| LinHES Forums http://forum.linhes.org/ |
|
| LinHes setup - skip-networking gone? http://forum.linhes.org/viewtopic.php?f=6&t=15288 |
Page 1 of 1 |
| Author: | Too Many Secrets [ Sat May 19, 2007 6:47 pm ] |
| Post subject: | LinHes setup - skip-networking gone? |
I'm trying to setup a MBE/SBE config. So reading the LinHessection and this thread sends me to comment out 'skip-networking' in /etc/mysql/my.cnf but I only see the following. Code: skip-external-locking
# # Instead of skip-networking the default is now to listen only on # localhost which is more compatible and is not less secure. bind-address = 127.0.0.1 Does the LinHes setup have (need) an update? or am I missing something? Do I need to change the bind-address? or leave the file as is? TIA |
|
| Author: | tjc [ Sat May 19, 2007 7:18 pm ] |
| Post subject: | |
A quick search for skip-networking turned up this... http://mysettopbox.tv/phpBB2/viewtopic.php?t=14890&highlight=skipnetworking |
|
| Author: | Too Many Secrets [ Sat May 19, 2007 10:12 pm ] |
| Post subject: | |
THanks for steering me in the right direction. This wiki entry was really current and helpful too. I was having problems with the 'skip-networking' entry and the location change from /usr/share/mythtv/mysql.txt to /etc/mythtv/mysql.txt After these changes were made, I was able to connect just fine. |
|
| Author: | gatorback [ Sun May 20, 2007 9:01 am ] |
| Post subject: | |
I had to comment out the bind-address line to enable tapeworm to access the database from my M$ machine: Code: skip-external-locking # # Instead of skip-networking the default is now to listen only on # localhost which is more compatible and is not less secure. # bind-address = 127.0.0.1 What is the implication \ consequences of this change. I think that it means any IP address can now access the database. Could I do this if I wanted to increase security: Code: skip-external-locking
# # Instead of skip-networking the default is now to listen only on # localhost which is more compatible and is not less secure. bind-address = 192.168.2.XXX bind-address = 192.168.2.XXX bind-address = 192.168.2.XXX |
|
| Author: | slowtolearn [ Sun May 20, 2007 9:24 am ] |
| Post subject: | |
gatorback wrote: I had to comment out the bind-address line to enable tapeworm to access the database from my M$ machine: Nope, that won't work. See http://dev.mysql.com/doc/refman/5.0/en/ ... erver.html for more details.
Code: skip-external-locking # # Instead of skip-networking the default is now to listen only on # localhost which is more compatible and is not less secure. # bind-address = 127.0.0.1 What is the implication \ consequences of this change. I think that it means any IP address can now access the database. Could I do this if I wanted to increase security: Code: skip-external-locking # # Instead of skip-networking the default is now to listen only on # localhost which is more compatible and is not less secure. bind-address = 192.168.2.XXX bind-address = 192.168.2.XXX bind-address = 192.168.2.XXX |
|
| Author: | tjc [ Sun May 20, 2007 9:44 am ] |
| Post subject: | |
The bottom line is that bind-address is not primarily intended as an access control mechanism. As far as I can tell it was added as a fix for servers with multiple NICs and/or multiple IP addresses (what are often called "multi-homed" servers). It simply tells the mysql instance which IP address to listen on (bind to). Binding to the loopback interface prevents outside access as almost a side effect... BTW - I've added known change 6.4 to the hints to cover this issue. |
|
| Page 1 of 1 | All times are UTC - 6 hours |
| Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/ |
|