Sometimes when I send files to people I have to start my WAMP server, put the file in the doc root then send a link to the recipient. Yesterday I was sending some things using this method when my personal firewall (Sygate) informed me that some SQL.exe was connecting to a remote address. This was infact some time after i sent the file. I obviuosly said no to the connection and then shut down the web server.
Am at any real danger? Its apparent there was an attempt to do something unfrienldy. But what? and how can i secure in future?
Am I in danger
Moderator: General Moderators
-
timgolding
- Forum Newbie
- Posts: 14
- Joined: Tue Jul 24, 2007 9:02 am
- feyd
- Neighborhood Spidermoddy
- Posts: 31559
- Joined: Mon Mar 29, 2004 3:24 pm
- Location: Bothell, Washington, USA
Defense in depth as the saying goes. Block all but the essential ports for incoming traffic. Make sure to turn off port forwarding on your firewall/router if you turn it on unless it's necessary to keep it running all the time. The users on your database being set to local is certainly a step, but that doesn't preclude the database having security holes that allow remote connection anyways.
-
timgolding
- Forum Newbie
- Posts: 14
- Joined: Tue Jul 24, 2007 9:02 am
http://php.net/mysql_connect, in $server you pass the local socket (e.g. ":/tmp/mysql")