Author - Kenny Gryp

Meltdown and Spectre: CPU Security Vulnerabilities

CPU Security Vulnerabilities

In this blog post, we examine the recent revelations about CPU security vulnerabilities.
The beginning of the new year also brings to light fresh and new CPU security vulnerabilities. Today’s big offenders originate on the hardware side – more specifically, the CPU. The reported hardware kernel bugs allow for direct access to data held in the […]

Read more

Percona XtraDB Cluster, Galera Cluster, MySQL Group Replication High Availability Webinar: Q & A

High Availability Webinar

Thank you for attending the Wednesday, June 21, 2017 high availability webinar titled Percona XtraDB Cluster, Galera Cluster, MySQL Group Replication. In this blog, I will provide answers to the Q & A for that webinar.
You can find the slides and a recording of the webinar here.
Is there a minimum MySQL server version for Group […]

Read more

MySQL Ransomware: Open Source Database Security Part 3

MySQL Ransomware

This blog post examines the recent MySQL® ransomware attacks, and what open source database security best practices could have prevented them.
Unless you’ve been living under a rock, you know that there has been an uptick in ransomware for MongoDB and Elasticsearch deployments. Recently, we’re seeing the same for MySQL.
Let’s look and see if this is MySQL’s fault.
Other […]

Read more

How to Manually Build Percona Server for MySQL RPM Packages

In this blog, we’ll look at how to manually build Percona Server for MySQL RPM packages.
Several customers and other people from the open source community have asked us how they could make their own Percona Server for MySQL RPM binaries from scratch.
This request is often made by companies that want to add custom patches to […]

Read more

CVE-2016-6225: Percona Xtrabackup Encryption IV Not Being Set Properly

Pepper.com

If you are using Percona XtraBackup with
xbcrypt to create encrypted backups, and are using versions older than 2.3.6 or 2.4.5, we advise that you upgrade Percona XtraBackup.
Note: this does not affect encryption of encrypted InnoDB tables.
CVE-2016-6225
Percona XtraBackup versions older than 2.3.6 or 2.4.5 suffered an issue of not properly setting the Initialization Vector (IV) for encryption. This could […]

Read more

Is Your Database Affected by CVE-2016-6662?

CVE-2018-19039

In this blog post, I will discuss the CVE-2016-6662 vulnerability, how to tell if it affects you, and how to prevent the vulnerability from affecting you if you have an older version of MySQL.
I’ll also list which MySQL versions include the vulnerability fixes.
As we announced in a previous post, there are certain scenarios in Percona […]

Read more

Percona Live: Advanced Percona XtraDB Cluster in a Nutshell, La Suite

12 Days Until Percona Live

This blog post will discuss what is necessary of the Percona Live  Advanced Percona XtraDB Cluster tutorial.
Percona Live 2016 is happening in April! If you are attending, and you are registered to the Percona XtraDB Cluster (Galera) tutorial presented by Kenny and myself, please make sure that you:

Bring your laptop, this is a hands-on […]

Read more

Orchestrator: MySQL Replication Topology Manager

Orchestrator MySQL topology manager

This blog post discusses Orchestrator: MySQL Replication Topology Manager.
What is Orchestrator?
Orchestrator is a replication topology manager for MySQL.
It has many great features:

The topology and status of the replication tree is automatically detected and monitored
Either a GUI, CLI or API can be used to check the status and perform operations
Supports automatic failover of the master, and […]

Read more

Check for MySQL slave lag with Percona Toolkit plugin for Tungsten Replicator

A while back, I made some changes to the plugin interface for pt-online-schema-change which allows custom replication checks to be written. As I was adding this functionality, I also added the –plugin option to pt-table-checksum. This was released in Percona Toolkit 2.2.8.
With these additions, I spent some time writing a plugin that allows Percona […]

Read more

Sysbench Benchmarking of Tesora’s Database Virtualization Engine

Tesora, previously called Parelastic, asked Percona to do a sysbench benchmark evaluation of its Database Virtualization Engine on specific architectures on Amazon EC2.
The focus of Tesora is to provide a scalable Database As A Service platform for OpenStack. The Database Virtualization Engine (DVE) plays a part in this as it aims at allowing databases […]

Read more