MySQL: binding to world

MySQL is currently configured to listen to 0.0.0.0. Binding to world (0.0.0.0) can be dangerous in cases where the hosting machine is exposed, and in general it indicates a non-minimal security posture which can cause other unexpected exposures.

Problem

In mysqld.cnf:

bind-address=0.0.0.0

Fix

In mysqld.conf, bind to localhost:

bind-address=<localhost, or specific address>

See

Serverfault: listen to specific addresses

Updated 2 months ago