[debian-mysql] Question for production installation (for wordpress install)
Serge Cohen
serge.cohen at synchrotron-soleil.fr
Tue Sep 17 20:33:51 BST 2019
Dear Maintainer team,
I am currently working on setting up a server for a WordPress site. Obviously using debian (buster) as OS.
The wiki (https://wiki.debian.org/WordPress) exposes that after installing mariadb (as backend DB server) one has to execute the script «mysql_secure_installation»
The end of this script is rather clear on the actions it takes :
# Set the root password
# Remove anonymous users
# Disallow remote root login
# Remove test database
# Reload privilege tables
The concern for me is that this script is interactive (while I'm trying to automatise as much as possible the installation) and it seems to me that this script is not really useful since most of these actions are already taken by the debian package. The only difference being that root (db root) is set with no password but unix socket authentication (which to me seems even more secure in term of connection).
I could not find a clear recommandation coming directly with the mariadb package, so I am wondering if there is any incured risks not running the «mysql_secure_installation» after package installation ?
Thank you very much in advance,
Serge.
++++++++++++++++++++++++++++++++++++++++
Serge Cohen
GPG Key ID: F8EFC246D17B29CC
IPANEMA USR 3461 CNRS/MiC/UVSQ/MNHN
site Synchrotron SOLEIL
L'Orme des Merisiers
Saint-Aubin - BP48
91192 Gif-sur-Yvette cedex
FRANCE
tel : +33 169 35 90 28
web : http://ipanema.cnrs.fr/
++++++++++++++++++++++++++++++++++++++++
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 873 bytes
Desc: Message signed with OpenPGP
URL: <http://alioth-lists.debian.net/pipermail/pkg-mysql-maint/attachments/20190917/24e625c9/attachment.sig>
More information about the pkg-mysql-maint
mailing list