You are here

Home

security

MariaDB Honeypot

Thu, 2025-03-06 09:50Shinguz
Taxonomy upgrade extras: 
security
honeypot
mariadb

In our MariaDB advanced training courses, which we hold approximately every two months, we use machines that are directly exposed to the Internet with a public IP address.
Warning: You should NEVER expose a database directly to the Internet without protection!
Typically, it takes less than 72 hours (3 days) before we are exposed to the first external access attempts.

This looks something like this in the MariaDB error log:

MariaDB Honeypot

Tue, 2025-03-04 16:27oli
Taxonomy upgrade extras: 
mariadb
honeypot
security

Bei unseren MariaDB für Fortgeschrittene Schulungen, welche wir in etwa alle zwei Monate halten, verwenden wir Maschinen, welche mit einer öffentlichen IP-Adresse direkt dem Internet ausgesetzt sind.
Achtung: Man sollte NIE eine Datenbank ungeschützt direkt dem Internet aussetzen!
Typischerweise dauert es keine 72 Stunden (3 Tage) bis wir ersten Zugriffsversuchen von aussen ausgesetzt sind.

Dies sieht dann im MariaDB Error Log in etwa wie folgt aus:

MariaDB Security Risk Matrix

MariaDB Vulnerabilities

CVE# Product Component Protocol Remote
Exploit
without
Auth.?		 CVSS VERSION 3.0 RISK (see Risk Matrix Definitions) Versions Affected
Base
Score		 Attack
Undefined
tags: 
mariadb
security
risk
matrix
vulnerability

Oracle releases MySQL security vulnerability fixes 2018-01

Wed, 2018-01-17 11:27Shinguz
Taxonomy upgrade extras: 
cpu
security
mysql
upgrade

As in every quarter of the year Oracle has released yesterday its recommendation for the MySQL security updates. This is called, in Oracle terminology, Critical Patch Update (CPU) Advisory.

This CPU is published for all Oracle products. But FromDual is only interested in MySQL related topics. So let us concentrate on those.

MySQL and MariaDB authentication against pam_unix

Mon, 2017-02-13 18:02Shinguz
Taxonomy upgrade extras: 
authentication
pam
security
plugin

The PAM authentication plugin is an extension included in MySQL Enterprise Edition (since 5.5) and in MariaDB (since 5.2).

Non-standard database set up with SELinux

Tue, 2016-12-13 15:26cedric
Taxonomy upgrade extras: 
mysql
mariadb
centos
security
selinux

What is SELinux?

The Security-Enhanced Linux is an extension to the Linux Kernel, made by the NSA (National Security Agency). It implements Mandatory Access Controls (MAC), which allow an administrator to define, how applications and users can access resources on a system.

MySQL and MariaDB Security

Overview

Undefined
tags: 
security
mysql
cpu
update
vulnerability
mariadb
upgrade
debian
ubuntu
centos
rhel
red hat
suse
opensuse
sles
redhat
Subscribe to RSS - security