MySQL: binding to world

Suggest Edits

MySQL is currently configured to listen to 0.0.0.0. Binding to world (0.0.0.0) can be dangerous in cases where the hosting machine is exposed, and in general it indicates a non-minimal security posture which can cause other unexpected exposures.

Problem

In mysqld.cnf:

bind-address=0.0.0.0

Fix

In mysqld.conf, bind to localhost:

bind-address=<localhost, or specific address>

See

Serverfault: listen to specific addresses

Updated over 1 year ago