Mar 06, 2020 |
MySQL, Open Source, ProxySQL
In the MySQL ecosystem, orchestrator is the most popular and well-respected high availability and topology management tool, integrating well with other solutions such as ProxySQL. It facilitates automatic (or manual) discovery, refactoring and recovery of a replicated MySQL environment, and comes complete with both command-line (CLI) and web interfaces for both humans and machines to […]
Oct 22, 2019 |
Monitoring, Percona Software
In this article, we will take a look at how to run Percona Monitoring and Management (PMM) Server in a container without root privileges. Some of the concerns companies have about using Docker relate to the security risks that exist due to the requirement for root privileges in order to run the service and therefore […]
Apr 18, 2019 |
Insight for DBAs, MySQL, Security
Python 2 reaches EOL on 2020-01-01 and one of its commonly used third-party packages is MySQL-python. If you have not yet migrated away from both of these, since MySQL-python does not support Python 3, then you may have come across some issues if you are using more recent versions of MySQL and are enforcing a […]
Feb 28, 2019 |
MySQL
Last week I came across a bug in MySQL 8.0, which meant that the absence of mysql.user leads to auto-apply of –skip-grant-tables (#94394) would leave MySQL running in an undesirable state. My colleague Sveta Smirnova blogged about the issue and it also caught the interest of Valeriy Kravchuk in Fun with Bugs #80 – On […]
Oct 04, 2018 |
Insight for DBAs, MariaDB, MySQL
When deciding on your backup strategy, one of the key components for Point In Time Recovery (PITR) will be the binary logs. Thankfully, the mysqlbinlog command allows you to easily take binary log backups, including those that would otherwise be encrypted on disk using encrypt_binlog=ON.
Sep 14, 2018 |
MySQL, Percona Software, Security
In my last post I compared data at-rest encryption features available for MySQL and MariaDB. As noted at the time, some of the features available for Percona Server for MySQL were in development, and the latest version (5.7.23) sees two of them released as ALPHA quality. Encrypting the InnoDB system tablespace The first of the […]
Aug 23, 2018 |
MariaDB, MySQL, Percona Software, Security
Protecting the data stored in your database may have been at the top of your priorities recently, especially with the changes that were introduced earlier this year with GDPR. There are a number of ways to protect this data, which until not so long ago would have meant either using an encrypted filesystem (e.g. LUKS), […]
Jan 24, 2018 |
Insight for DBAs, MySQL, Security
The news that the latest MySQL 8.0.4 RC (release candidate) is available is indeed exciting. Unfortunately for users of the auth_socket plugin, dangers lie in wait! Back in November 2015, I reported Failure of auth_socket authentication with sha256_password as default. This prevents users that identify with the
auth_socket plugin from logging in after SHA256 authentication has been […]
Nov 14, 2016 |
Insight for DBAs, Insight for Developers, MySQL, Security
Using Vault with MySQL In my previous post I discussed using GPG to secure your database credentials. This relies on a local copy of your MySQL client config, but what if you want to keep the credentials stored safely along with other super secret information? Sure, GPG could still be used, but there must be […]
Oct 12, 2016 |
Insight for DBAs, MySQL, Percona Software