Author - Kenny Gryp

Meltdown and Spectre: CPU Security Vulnerabilities

CPU Security Vulnerabilities

In this blog post, we examine the recent revelations about CPU security vulnerabilities.
The beginning of the new year also brings to light fresh and new CPU security vulnerabilities. Today’s big offenders originate on the hardware side – more specifically, the CPU. The reported hardware kernel bugs allow for direct access to data held in the […]

Read more

Percona XtraDB Cluster, Galera Cluster, MySQL Group Replication High Availability Webinar: Q & A

High Availability Webinar

Thank you for attending the Wednesday, June 21, 2017 high availability webinar titled Percona XtraDB Cluster, Galera Cluster, MySQL Group Replication. In this blog, I will provide answers to the Q & A for that webinar.
You can find the slides and a recording of the webinar here.
Is there a minimum MySQL server version for Group […]

Read more

MySQL Ransomware: Open Source Database Security Part 3

MySQL Ransomware

This blog post examines the recent MySQL® ransomware attacks, and what open source database security best practices could have prevented them.
Unless you’ve been living under a rock, you know that there has been an uptick in ransomware for MongoDB and Elasticsearch deployments. Recently, we’re seeing the same for MySQL.
Let’s look and see if this is MySQL’s fault.
Other […]

Read more

How to Manually Build Percona Server for MySQL RPM Packages

In this blog, we’ll look at how to manually build Percona Server for MySQL RPM packages.
Several customers and other people from the open source community have asked us how they could make their own Percona Server for MySQL RPM binaries from scratch.
This request is often made by companies that want to add custom patches to […]

Read more

CVE-2016-6225: Percona Xtrabackup Encryption IV Not Being Set Properly

Pepper.com

If you are using Percona XtraBackup with
xbcrypt to create encrypted backups, and are using versions older than 2.3.6 or 2.4.5, we advise that you upgrade Percona XtraBackup.
Note: this does not affect encryption of encrypted InnoDB tables.
CVE-2016-6225
Percona XtraBackup versions older than 2.3.6 or 2.4.5 suffered an issue of not properly setting the Initialization Vector (IV) for encryption. This could […]

Read more