官术网_书友最值得收藏!

Hardening a database service

We have seen setting up the database. The following code snippet shows how we can harden the MySQL service by binding it to localhost and the required interfaces for interacting with the application. It then removes the anonymous user and test databases:

- name: delete anonymous mysql user for localhost
mysql_user:
user: ""
state: absent
login_password: "{{ mysql_root_password }}"
login_user: root

- name: secure mysql root user
mysql_user:
user: "root"
password: "{{ mysql_root_password }}"
host: "{{ item }}"
login_password: "{{ mysql_root_password }}"
login_user: root

with_items:
- 127.0.0.1
- localhost
- ::1
- "{{ ansible_fqdn }}"

- name: removes mysql test database
mysql_db:
db: test
state: absent
login_password: "{{ mysql_root_password }}"
login_user: root
主站蜘蛛池模板: 清镇市| 镇原县| 普兰店市| 平利县| 南投市| 客服| 中西区| 丹凤县| 万盛区| 治县。| 浙江省| 大庆市| 游戏| 万山特区| 扶绥县| 江津市| 海城市| 英吉沙县| 香格里拉县| 玛多县| 安龙县| 金坛市| 潜江市| 兖州市| 龙泉市| 祥云县| 普兰店市| 宜城市| 张家口市| 重庆市| 视频| 扎赉特旗| 巫山县| 泾阳县| 淮安市| 嘉定区| 澄迈县| 镇原县| 朝阳市| 林芝县| 隆德县|