Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bind on 0.0.0.0 by default #1103

Closed
renecannao opened this issue Jul 20, 2017 · 3 comments
Closed

Bind on 0.0.0.0 by default #1103

renecannao opened this issue Jul 20, 2017 · 3 comments
Assignees
@renecannao
Labels
ADMIN AUTHENTICATION
Milestone
v1.4.1

Comments

@renecannao
Copy link
Contributor

renecannao commented Jul 20, 2017
edited
Loading

ProxySQL Admin binds on 127.0.0.1 by default.
To allow remote configuration, bind should be on 0.0.0.0 .
At the same time, in order to not compromise security, remove access should be denied for all default users (admin, stats, monitor)
@renecannao renecannao added this to the v1.4.1 milestone Jul 20, 2017
@renecannao renecannao self-assigned this Jul 20, 2017
renecannao added a commit that referenced this issue Jul 21, 2017
@renecannao
Features #1103 and #1104
1ada33a 
Bind on 0.0.0.0 by default #1103 and don't allow remote login from standard users

Do not listen on unix socket domain by default #1104 #1104
@ton31337
Copy link
Contributor

I suggest to bind on ::0 by default, it's already 2017 :)

@renecannao
Copy link
Contributor Author

I think this is described in #1103 (comment):

in order to not compromise security, remove access should be denied for all default users (admin, stats, monitor)

You can connect remotely, but not using the insecure default credentials

@ivankennethwang
Copy link

Oh yeah, i realized after re-reading the first post that's why i deleted my previous comment. Thank you!

@renecannao renecannao mentioned this issue Oct 21, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@renecannao renecannao

Labels
ADMIN AUTHENTICATION
Projects
None yet
Milestone
v1.4.1
Development

No branches or pull requests
3 participants
@ton31337 @renecannao @ivankennethwang