Security

MariaDB Honeypot

Thu, 2025-03-06 09:50 Shinguz

In our MariaDB advanced training courses, which we hold approximately every two months, we use machines that are directly exposed to the Internet with a public IP address. Warning: You should NEVER expose a database directly to the Internet without protection! Typically, it takes less than 72 hours (3 days) before we are exposed to the first external access attempts.

This looks something like this in the MariaDB error log:

[Warning] Aborted connection 22939 to db: 'unconnected' user: 'unauthenticated' host: …
tags: 
security
honeypot
mariadb

MariaDB Push Replication

Mon, 2021-01-11 17:29 Shinguz

Table of Contents

How to make MariaDB Pull Replication as secure as possible

A normal MariaDB Replication is a Pull Replication. This means that a Slave connects to its Master and gathers or better requests Binary Log information from the Master and applies them in a streaming way.

In some set-ups the Slave is …

tags: 
mariadb
replication
security

MariaDB Security Risk Matrix

Tue, 2020-02-25 15:49 Shinguz
tags: 
mariadb
security
risk
matrix
vulnerability

Oracle releases MySQL security vulnerability fixes 2018-01

Wed, 2018-01-17 11:27 Shinguz

As in every quarter of the year Oracle has released yesterday its recommendation for the MySQL security updates. This is called, in Oracle terminology, Critical Patch Update (CPU) Advisory.

This CPU is published for all Oracle products. But FromDual is only interested in MySQL related topics. So let us concentrate on those.

This time 25 fixes with a maximum score of 8.1 (out of 10.0) were published.

6 of theses 25 vulnerabilities are exploitable remotely over the network without authentication (no user …

tags: 
cpu
security
mysql
upgrade

MySQL and MariaDB authentication against pam_unix

Mon, 2017-02-13 18:02 Shinguz

The PAM authentication plugin is an extension included in MySQL Enterprise Edition (since 5.5) and in MariaDB (since 5.2).

MySQL authentication against pam_unix

Check if plugin is available:

# ll lib/plugin/auth*so
-rwxr-xr-x 1 mysql mysql 42937 Sep 18  2015 lib/plugin/authentication_pam.so
-rwxr-xr-x 1 mysql mysql 25643 Sep 18  2015 lib/plugin/auth.so
-rwxr-xr-x 1 mysql mysql 12388 Sep 18  2015 lib/plugin/auth_socket.so …
tags: 
authentication
pam
security
plugin

Non-standard database set up with SELinux

Tue, 2016-12-13 15:26 cedric

What is SELinux?

The Security-Enhanced Linux is an extension to the Linux Kernel, made by the NSA (National Security Agency). It implements Mandatory Access Controls (MAC), which allow an administrator to define, how applications and users can access resources on a system.

There is more detail in the SELinux Wki: https://selinuxproject.org/page/FAQ
… and the CentOS documentation: https://wiki.centos.org/HowTos/SELinux

Some distributions have it installed by default, but not active, some have it …

tags: 
mysql
mariadb
centos
security
selinux

MySQL and MariaDB Security

Fri, 2013-01-18 09:27 oli

Overview

tags: 
security
mysql
cpu
update
vulnerability
mariadb
upgrade
debian
ubuntu
centos
rhel
red hat
suse
opensuse
sles
redhat
Subscribe to RSS - Security