> To verify that root has a password, do the following:
>
> 1) service mysql restart --skip-grant-tables
> 2) In MySQL, SELECT CONCAT(,user,'''@''',host,) mysql_user,password
> from mysql.user where user='root';
> This will show every host that root can login as along with the PASSWORD
>
> without flags to tell it otherwise, nmap only scan ports 1-1024,
> higher numbered ports would have to be specified via nmap -p 1-5000
> but see how much longer it takes.
Bingo. That was it. I see now that I've had port 3306 open until
recently. I'm working on verifying that the mysql users h
without flags to tell it otherwise, nmap only scan ports 1-1024,
higher numbered ports would have to be specified via nmap -p 1-5000
but see how much longer it takes.
- michael dykman
On Mon, Nov 29, 2010 at 9:02 AM, Grant wrote:
> I've got a couple security questions for you guys.
>
> Is ther
pe : RolandoLogicWorx
redwa...@logicworks.net
http://www.linkedin.com/in/rolandoedwards
-Original Message-
From: Grant [mailto:emailgr...@gmail.com]
Sent: Monday, November 29, 2010 9:02 AM
To: mysql@lists.mysql.com
Subject: Verifying security
I've got a couple security questions for you
I've got a couple security questions for you guys.
Is there a way to verify I've set a password for mysql's root?
I was previously running mysqld without --skip-networking until I
noticed port: 3306 was referenced in mysqld.err. The strange thing is
'nmap localhost' never found an open 3306 port
