[Cialug] mysql security questions

Matthew Nuzum newz at bearfruit.org
Sat Jul 30 16:04:56 CDT 2011


1. If you were launching a MySQL backend server EC2 instance and you wanted
to be able to spin up other front end instances on demand, would you tell
mysql to listen on 0.0.0.0 and trust the GRANT statement to prevent
unauthorized users from accessing MySQL or would you do something different?
(Keep in mind that performance is important, i.e. spinning up new front ends
should give nearly linear improvements in performance)

2. When a new front end spins up, it needs to tell the MySQL server that it
is there and should have access to the database table. Is there a common way
to achieve this? In this case, both servers have access to a GIT repo with
the same code so there it is possible to use a shared secret of some type.

I'm looking for ways to automate this as much as possible. I'm also trying
not to re-invent any wheels while I'm doing it.

-- 
Matthew Nuzum
newz2000 on freenode, skype, linkedin and twitter

♫ You're never fully dressed without a smile! ♫
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cialug.org/pipermail/cialug/attachments/20110730/f061547f/attachment.html>


More information about the Cialug mailing list