#1  
Old 17th August 2010, 23:45
Morons Morons is offline
Senior Member
  
Join Date: Aug 2006
Posts: 179
Thanks: 8
Thanked 15 Times in 7 Posts
Question Spammes got clvir again!
Thes spamers have to much time on hand!

For a few months I could get them under controll but suddenly I get lot of spam "comming from myself" (spoofed) or otherwise.

This is visible on both ISPC2 & ISPC3. In my search to check my systems I found that port 3306 is OPEN to the internet. Well in the http://www.howtoforge.com/perfect-se...ispconfig-3-p4 setup we remark out the localhost bind in mysql config.
I do not understand the need for ISPC to be open to the internet!
and the firewall do not block it either.

Any suggestions or from a security side how can we secure this more?

http://www.mxtoolbox.com < good tool for outside view looking to your servers.
Reply With Quote
Sponsored Links
  #2  
Old 18th August 2010, 00:40
dcy dcy is offline
Junior Member
  
Join Date: Jul 2010
Posts: 24
Thanks: 0
Thanked 2 Times in 2 Posts
Default
Quote:
Originally Posted by Morons View Post
This is visible on both ISPC2 & ISPC3. In my search to check my systems I found that port 3306 is OPEN to the internet. Well in the http://www.howtoforge.com/perfect-se...ispconfig-3-p4 setup we remark out the localhost bind in mysql config.
I do not understand the need for ISPC to be open to the internet!
and the firewall do not block it either.
This needs to be done, so your users are able to access their own MySQL databases with their own MySQL Workbench (or query browser/administrator). If you do not have any users that require remote connectivity to their own MySQL databases you will not break anything if you filter out tcp connections to 3306 from the Internet.

It is however advisable to prohibit root MySQL access remotely (if you need administrative root connectivity consider using a different username than 'root').

In regards to spam - having a publically accessible MySQL will not raise the amount of spam you receive. Them spammers be very resourceful people unfortunately, and they would not bother spamming you if they had access to your server, but would rather turn your machine into one of their spamming zombies

D.
Last edited by dcy; 18th August 2010 at 03:13.
Reply With Quote
  #3  
Old 18th August 2010, 09:19
Morons Morons is offline
Senior Member
  
Join Date: Aug 2006
Posts: 179
Thanks: 8
Thanked 15 Times in 7 Posts
 
Default
Quote:
Originally Posted by dcy View Post

In regards to spam - having a publically accessible MySQL will not raise the amount of spam you receive. Them spammers be very resourceful people unfortunately, and they would not bother spamming you if they had access to your server, but would rather turn your machine into one of their spamming zombies

D.
Indeed, Hacker/Spammers will install some rootkit and use the platform leaving all else intact. Unles they Imbeciles! Dont kill the golden Goose you might say.
Reply With Quote
Reply

Bookmarks

Tags
3306, security

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT +2. The time now is 13:16.

Contact Us - HowtoForge - Linux Howtos and Tutorials - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2013, vBulletin Solutions, Inc.