vlambda博客
学习文章列表

# systemctl status mysql● mysql.service - MySQL Community Server Loaded: loaded (/lib/systemd/system/mysql.service; enabled; vendor preset: enabled) Active: active (running) since Thu 2021-04-01 10:06:14 CST; 7s ago Process: 72107 ExecStartPre=/usr/share/mysql/mysql-systemd-start pre (code=exited, status=0/SUCCESS) Process: 72142 ExecStart=/usr/sbin/mysqld --daemonize --pid-file=/var/run/mysqld/mysqld.pid (code=exited, status=0/SUCCESS)Main PID: 72144 (mysqld) Tasks: 27 (limit: 2330) Memory: 181.1M CGroup: /system.slice/mysql.service └─72144 /usr/sbin/mysqld --daemonize --pid-file=/var/run/mysqld/mysqld.pid
4月 0110:06:12 debian systemd[1]: Starting MySQL Community Server...4月 0110:06:14 debian systemd[1]: Started MySQL Community Server.

# netstat -ntlp | grep 3306tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 72144/mysqld

# systemctl status firewalld●firewalld.service - firewalld - dynamic firewall daemon Loaded: loaded (/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled) Active: active (running) since Thu 2021-04-01 11:35:14 CST; 19s ago Docs: man:firewalld(1)Main PID: 103561 (firewalld) Tasks: 2 (limit: 2330) Memory: 20.4M CGroup: /system.slice/firewalld.service └─103561 /usr/bin/python3 /usr/sbin/firewalld --nofork --nopid
4月01 11:35:14 debian systemd[1]: Starting firewalld - dynamic firewall daemon...4月01 11:35:14 debian systemd[1]: Started firewalld - dynamic firewall daemon.

# systemctl stop firewalld

# firewall-cmd --zone=public --add-service=mysql --permanent //开放mysql服务# firewall-cmd --reload //重载生效success# firewall-cmd --zone=public --list-services //查看添加效果dhcpv6-client mysql ssh

# firewall-cmd --zone=public --query-port=3306/tcp --permanent //开放3306端口# firewall-cmd --reload //重载生效success# firewall-cmd --zone=public --list-ports //查看添加效果3306/tcp

# mysql -uroot -p //登录mysqlEnter password:Welcome to the MySQL monitor. Commands endwith ; or \g.Your MySQL connection id is 4Server version:5.7.33 MySQL Community Server (GPL)
Copyright (c) 2000, 2021, Oracle and/orits affiliates.
Oracle is a registered trademark of Oracle Corporation and/oritsaffiliates. Other names may be trademarks of their respectiveowners.
Type 'help;'or '\h' for help. Type '\c' to clear the current input statement.
mysql> use mysql; Reading table information forcompletion of table and column namesYou can turn off this feature to get a quicker startup with -A
Database changed
mysql> grant all privileges on *.* to root@'%'identified by 'xxxxxxxx' with grant option;Query OK, 0rows affected, 1 warning (0.00 sec)
mysql> flush privileges;Query OK, 0rows affected (0.00 sec)
mysql> select host,user from user;+-----------+---------------+| host |user |+-----------+---------------+|% | root || localhost |mysql.session ||localhost | mysql.sys || localhost |root |+-----------+---------------+4 rows inset (0.00 sec)

# vim /etc/mysql/my.cnf

# systemctl restart firewalld

# sudo mysql_secure_installationSecuring the MySQL server deployment.
Enter password for user root:The 'validate_password' plugin is installed on the server.The subsequent steps will run withthe existing configurationofthe plugin.Usingexisting password for root.
Estimated strength ofthe password: 50Changethe password for root ? ((Press y|Y for Yes, any other key for No) : n
... skipping.Bydefault, a MySQL installation has an anonymous user,allowing anyone tolog into MySQL without having to havea useraccount created for them. This is intended only fortesting, andto make the installation go a bit smoother.You should remove them beforemoving into a productionenvironment.
Remove anonymous users? (Press y|Y forYes, any other key for No) : ySuccess.

Normally, root should onlybe allowed to connect from'localhost'. This ensures that someone cannot guess atthe root passwordfrom the network.
Disallowroot login remotely? (Press y|Y for Yes, any other key for No) : n
... skipping.Bydefault, MySQL comes with a database named 'test' thatanyone can access. This isalso intended only for testing,andshould be removed before moving into a productionenvironment.

Remove testdatabase and access to it? (Press y|Y for Yes, any other key for No) : n
... skipping.Reloading the privilege tableswill ensure that all changesmade so farwill take effect immediately.
Reload privilege tablesnow? (Press y|Y for Yes, any other key for No) : n
... skipping.Alldone!

root@debian:/etc/mysql# ls -l总用量 16drwxr-xr-x 2root root 4096 3月 31 15:32 conf.dlrwxrwxrwx 1root root 24 3月 31 15:32 my.cnf -> /etc/alternatives/my.cnf-rw-r--r-- 1root root 839 8月 3 2016 my.cnf.fallback-rw-r--r-- 1root root 1215 4月 1 10:00 mysql.cnfdrwxr-xr-x 2root root 4096 4月 1 10:05 mysql.conf.d

root@debian:/etc/mysql# cat ./conf.d/mysql.cnf[mysql]root@debian:/etc/mysql# cat ./conf.d/mysqldump.cnf[mysqldump]quickquote-namesmax_allowed_packet = 16Mroot@debian:/etc/mysql# cat my.cnf# Copyright (c) 2016, Oracle and/or its affiliates. All rights reserved.## This program is free software; you can redistribute it and/or modify# it under the terms of the GNU General Public License, version 2.0,# as published by the Free Software Foundation.## This program is also distributed with certain software (including# but not limited to OpenSSL) that is licensed under separate terms,# as designated in a particular file or component or in included license# documentation. The authors of MySQL hereby grant you an additional# permission to link the program and your derivative works with the# separately licensed software that they have included with MySQL.## This program is distributed in the hope that it will be useful,# but WITHOUT ANY WARRANTY; without even the implied warranty of# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the# GNU General Public License, version 2.0, for more details.## You should have received a copy of the GNU General Public License# along with this program; if not, write to the Free Software# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
!includedir /etc/mysql/conf.d/!includedir /etc/mysql/mysql.conf.d/root@debian:/etc/mysql# cat my.cnf.fallback## The MySQL database server configuration file.## You can copy this to one of:# - "/etc/mysql/my.cnf" to set global options,# - "~/.my.cnf" to set user-specific options.## One can use all long options that the program supports.# Run program with --help to get a list of available options and with# --print-defaults to see which it would actually understand and use.## For explanations see# http://dev.mysql.com/doc/mysql/en/server-system-variables.html
# This will be passed to all mysql clients# It has been reported that passwords should be enclosed with ticks/quotes# escpecially if they contain "#" chars...# Remember to edit /etc/mysql/debian.cnf when changing the socket location.
# Here is entries for some specific programs# The following values assume you have at least 32M ram
!includedir /etc/mysql/conf.d/root@debian:/etc/mysql# cat mysql.cnf# Copyright (c) 2016, Oracle and/or its affiliates. All rights reserved.## This program is free software; you can redistribute it and/or modify# it under the terms of the GNU General Public License, version 2.0,# as published by the Free Software Foundation.## This program is also distributed with certain software (including# but not limited to OpenSSL) that is licensed under separate terms,# as designated in a particular file or component or in included license# documentation. The authors of MySQL hereby grant you an additional# permission to link the program and your derivative works with the# separately licensed software that they have included with MySQL.## This program is distributed in the hope that it will be useful,# but WITHOUT ANY WARRANTY; without even the implied warranty of# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the# GNU General Public License, version 2.0, for more details.## You should have received a copy of the GNU General Public License# along with this program; if not, write to the Free Software# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
!includedir /etc/mysql/conf.d/!includedir /etc/mysql/mysql.conf.d/root@debian:/etc/mysql# cat mysql.conf.d/mysqld.cnf# Copyright (c) 2014, 2016, Oracle and/or its affiliates. All rights reserved.## This program is free software; you can redistribute it and/or modify# it under the terms of the GNU General Public License, version 2.0,# as published by the Free Software Foundation.## This program is also distributed with certain software (including# but not limited to OpenSSL) that is licensed under separate terms,# as designated in a particular file or component or in included license# documentation. The authors of MySQL hereby grant you an additional# permission to link the program and your derivative works with the# separately licensed software that they have included with MySQL.## This program is distributed in the hope that it will be useful,# but WITHOUT ANY WARRANTY; without even the implied warranty of# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the# GNU General Public License, version 2.0, for more details.## You should have received a copy of the GNU General Public License# along with this program; if not, write to the Free Software# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
## The MySQL Server configuration file.## For explanations see# http://dev.mysql.com/doc/mysql/en/server-system-variables.html
[mysqld]pid-file = /var/run/mysqld/mysqld.pidsocket = /var/run/mysqld/mysqld.sockdatadir = /var/lib/mysqllog-error = /var/log/mysql/error.log# By default we only accept connections from localhostbind-address = 127.0.0.1# Disabling symbolic-links is recommended to prevent assorted security riskssymbolic-links=0root@debian:/etc/mysql#