目次
1. 媒介
2. Mysql賬戶權(quán)限安詳
3. Mysql數(shù)據(jù)的網(wǎng)絡(luò)安詳設(shè)置
4. 暗碼計策安詳
5. Mysql日志
6. Mysql數(shù)據(jù)庫處事地址主機安詳設(shè)置
7. 陳設(shè)SQL注入檢測、防止模塊
8. mysqld安詳相關(guān)啟動選項
9. mysql備份計策
1. 媒介
Mysql數(shù)據(jù)庫安詳設(shè)置、可能叫加固屬于風(fēng)險模子中的一環(huán),它需要安詳人員在理論和實踐的進(jìn)修中不絕發(fā)明新的問題,并針對這些問題對數(shù)據(jù)的各個方面的設(shè)置舉辦強化。本文試圖環(huán)繞著數(shù)據(jù)庫風(fēng)險識別、數(shù)據(jù)庫安詳加固這個問題,探討可以采納的法子來最洪流平的擔(dān)保我們的數(shù)據(jù)庫的安詳節(jié)制處在一個較好的程度。
2. Mysql賬戶權(quán)限安詳
mysql中存在4個節(jié)制權(quán)限的表,別離為
1. mysql.USER表
2. mysql.DB表
3. mysql.TABLES_PRIV表
4. mysql.COLUMNS_PRIV表
要留意的是,Mysql中有一個數(shù)據(jù)庫"information_schema",好像內(nèi)里生存的也是一些權(quán)限信息,可是要大白的是,這個數(shù)據(jù)庫"information_schema"是為系統(tǒng)打點員提供元數(shù)據(jù)的一個輕便方法,它實際上是一個視圖,可以領(lǐng)略為對Mysql中的一個信息的封裝,對付Mysql主措施來說,身份認(rèn)證和授權(quán)的信息的來歷只有一個,就是"mysql"。
http://www.cnblogs.com/hzhida/archive/2012/08/08/2628826.html
0×1. mysql.USER表
select * from USER;
desc USER;
mysql> desc USER;+------------------------+-----------------------------------+------+-----+---------+-------+
| Field | Type | Null | Key | Default | Extra |
+------------------------+-----------------------------------+------+-----+---------+-------+
| Host | char(60) | NO | PRI | | |
| User | char(16) | NO | PRI | | |
| Password | char(41) | NO | | | |
| Select_priv | enum('N','Y') | NO | | N | |
| Insert_priv | enum('N','Y') | NO | | N | |
| Update_priv | enum('N','Y') | NO | | N | |
| Delete_priv | enum('N','Y') | NO | | N | |
| Create_priv | enum('N','Y') | NO | | N | |
| Drop_priv | enum('N','Y') | NO | | N | |
| Reload_priv | enum('N','Y') | NO | | N | |
| Shutdown_priv | enum('N','Y') | NO | | N | |
| Process_priv | enum('N','Y') | NO | | N | |
| File_priv | enum('N','Y') | NO | | N | |
| Grant_priv | enum('N','Y') | NO | | N | |
| References_priv | enum('N','Y') | NO | | N | |
| Index_priv | enum('N','Y') | NO | | N | |
| Alter_priv | enum('N','Y') | NO | | N | |
| Show_db_priv | enum('N','Y') | NO | | N | |
| Super_priv | enum('N','Y') | NO | | N | |
| Create_tmp_table_priv | enum('N','Y') | NO | | N | |
| Lock_tables_priv | enum('N','Y') | NO | | N | |
| Execute_priv | enum('N','Y') | NO | | N | |
| Repl_slave_priv | enum('N','Y') | NO | | N | |
| Repl_client_priv | enum('N','Y') | NO | | N | |
| Create_view_priv | enum('N','Y') | NO | | N | |
| Show_view_priv | enum('N','Y') | NO | | N | |
| Create_routine_priv | enum('N','Y') | NO | | N | |
| Alter_routine_priv | enum('N','Y') | NO | | N | |
| Create_user_priv | enum('N','Y') | NO | | N | |
| Event_priv | enum('N','Y') | NO | | N | |
| Trigger_priv | enum('N','Y') | NO | | N | |
| Create_tablespace_priv | enum('N','Y') | NO | | N | |
| ssl_type | enum('','ANY','X509','SPECIFIED') | NO | | | |
| ssl_cipher | blob | NO | | NULL | |
| x509_issuer | blob | NO | | NULL | |
| x509_subject | blob | NO | | NULL | |
| max_questions | int(11) unsigned | NO | | 0 | |
| max_updates | int(11) unsigned | NO | | 0 | |
| max_connections | int(11) unsigned | NO | | 0 | |
| max_user_connections | int(11) unsigned | NO | | 0 | |
| plugin | char(64) | YES | | | |
| authentication_string | text | YES | | NULL | |
| password_expired | enum('N','Y') | NO | | N | |
+------------------------+-----------------------------------+------+-----+---------+-------+
