推薦：MySQL中實(shí)現(xiàn)高性能高并發(fā)計(jì)數(shù)器方案
現(xiàn)在有很多的項(xiàng)目，對(duì)計(jì)數(shù)器的實(shí)現(xiàn)甚是隨意，比如在實(shí)現(xiàn)網(wǎng)站文章點(diǎn)擊數(shù)的時(shí)候，是這么設(shè)計(jì)數(shù)據(jù)表的，如：article_id, article_name, article_content, article_author, article_view在article_view中記錄該文章的瀏覽量。詐一看似乎沒(méi)有問(wèn)題。對(duì)于小站，比如本博客，就

 1. 前言

Mysql數(shù)據(jù)庫(kù)安全配置、或者叫加固屬于風(fēng)險(xiǎn)模型中的一環(huán)，它需要安全人員在理論和實(shí)踐的學(xué)習(xí)中不斷發(fā)現(xiàn)新的問(wèn)題，并針對(duì)這些問(wèn)題對(duì)數(shù)據(jù)的各個(gè)方面的配置進(jìn)行強(qiáng)化。本文試圖圍繞著數(shù)據(jù)庫(kù)風(fēng)險(xiǎn)識(shí)別、數(shù)據(jù)庫(kù)安全加固這個(gè)問(wèn)題，探討可以采取的措施來(lái)最大程度的保證我們的數(shù)據(jù)庫(kù)的安全控制處在一個(gè)較好的水平。

2. Mysql賬戶權(quán)限安全

mysql中存在4個(gè)控制權(quán)限的表，分別為

1. mysql.USER表
2. mysql.DB表
3. mysql.TABLES_PRIV表
4. mysql.COLUMNS_PRIV表

要注意的是，Mysql中有一個(gè)數(shù)據(jù)庫(kù)"information_schema"，似乎里面保存的也是一些權(quán)限信息，但是要明白的是，這個(gè)數(shù)據(jù)庫(kù)"information_schema"是為系統(tǒng)管理員提供元數(shù)據(jù)的一個(gè)簡(jiǎn)便方式，它實(shí)際上是一個(gè)視圖，可以理解為對(duì)Mysql中的一個(gè)信息的封裝，對(duì)于Mysql主程序來(lái)說(shuō)，身份認(rèn)證和授權(quán)的信息的來(lái)源只有一個(gè)，就是"mysql"。

http://www.cnblogs.com/hzhida/archive/2012/08/08/2628826.html

0×1. mysql.USER表

select * from USER;
desc USER;
mysql> desc USER;+-------------------------------+------+-----+---------+-------+
| Field | Type | Null | Key | Default | Extra |
+-------------------------------+------+-----+---------+-------+
| Host | char(60) | NO | PRI | | |
| User | char(16) | NO | PRI | | |
| Password | char(41) | NO | | | |
| Select_priv | enum('N','Y') | NO | | N | |
| Insert_priv | enum('N','Y') | NO | | N | |
| Update_priv | enum('N','Y') | NO | | N | |
| Delete_priv | enum('N','Y') | NO | | N | |
| Create_priv | enum('N','Y') | NO | | N | |
| Drop_priv | enum('N','Y') | NO | | N | |
| Reload_priv | enum('N','Y') | NO | | N | |
| Shutdown_priv | enum('N','Y') | NO | | N | |
| Process_priv | enum('N','Y') | NO | | N | |
| File_priv | enum('N','Y') | NO | | N | |
| Grant_priv | enum('N','Y') | NO | | N | |
| References_priv | enum('N','Y') | NO | | N | |
| Index_priv | enum('N','Y') | NO | | N | |
| Alter_priv | enum('N','Y') | NO | | N | |
| Show_db_priv | enum('N','Y') | NO | | N | |
| Super_priv | enum('N','Y') | NO | | N | |
| Create_tmp_table_priv | enum('N','Y') | NO | | N | |
| Lock_tables_priv | enum('N','Y') | NO | | N | |
| Execute_priv | enum('N','Y') | NO | | N | |
| Repl_slave_priv | enum('N','Y') | NO | | N | |
| Repl_client_priv | enum('N','Y') | NO | | N | |
| Create_view_priv | enum('N','Y') | NO | | N | |
| Show_view_priv | enum('N','Y') | NO | | N | |
| Create_routine_priv | enum('N','Y') | NO | | N | |
| Alter_routine_priv | enum('N','Y') | NO | | N | |
| Create_user_priv | enum('N','Y') | NO | | N | |
| Event_priv | enum('N','Y') | NO | | N | |
| Trigger_priv | enum('N','Y') | NO | | N | |
| Create_tablespace_priv | enum('N','Y') | NO | | N | |
| ssl_type | enum('','ANY','X509','SPECIFIED') | NO | | | |
| ssl_cipher | blob | NO | | NULL | |
| x509_issuer | blob | NO | | NULL | |
| x509_subject | blob | NO | | NULL | |
| max_questions | int(11) unsigned | NO | | 0 | |
| max_updates | int(11) unsigned | NO | | 0 | |
| max_connections | int(11) unsigned | NO | | 0 | |
| max_user_connections | int(11) unsigned | NO | | 0 | |
| plugin | char(64) | YES | | | |
| authentication_string | text | YES | | NULL | |
| password_expired | enum('N','Y') | NO | | N | |
+-------------------------------+------+-----+---------+-------+

0×2. mysql.DB表

select * from DB;
desc DB;
mysql> desc DB; +-------------+------+-----+---------+-------+
| Field | Type | Null | Key | Default | Extra |
+-------------+------+-----+---------+-------+
| Host | char(60) | NO | PRI | | |
| Db | char(64) | NO | PRI | | |
| User | char(16) | NO | PRI | | |
| Select_priv | enum('N','Y') | NO | | N | |
| Insert_priv | enum('N','Y') | NO | | N | |
| Update_priv | enum('N','Y') | NO | | N | |
| Delete_priv | enum('N','Y') | NO | | N | |
| Create_priv | enum('N','Y') | NO | | N | |
| Drop_priv | enum('N','Y') | NO | | N | |
| Grant_priv | enum('N','Y') | NO | | N | |
| References_priv | enum('N','Y') | NO | | N | |
| Index_priv | enum('N','Y') | NO | | N | |
| Alter_priv | enum('N','Y') | NO | | N | |
| Create_tmp_table_priv | enum('N','Y') | NO | | N | |
| Lock_tables_priv | enum('N','Y') | NO | | N | |
| Create_view_priv | enum('N','Y') | NO | | N | |
| Show_view_priv | enum('N','Y') | NO | | N | |
| Create_routine_priv | enum('N','Y') | NO | | N | |
| Alter_routine_priv | enum('N','Y') | NO | | N | |
| Execute_priv | enum('N','Y') | NO | | N | |
| Event_priv | enum('N','Y') | NO | | N | |
| Trigger_priv | enum('N','Y') | NO | | N | |
+-------------+------+-----+---------+-------+

0×3. mysql.TABLES_PRIV表

分享：創(chuàng)建MySQL從庫(kù)
我們知道Oracle有DataGuard實(shí)時(shí)備份數(shù)據(jù)，可以做主備切換，而MySQL也有自己的一套備庫(kù)方案，稱(chēng)之為主從復(fù)制。 搭建MySQL從庫(kù)是為了實(shí)時(shí)同步主庫(kù)數(shù)據(jù)，同時(shí)也可以分擔(dān)主庫(kù)的讀壓力，對(duì)數(shù)據(jù)庫(kù)端做成讀寫(xiě)分離結(jié)構(gòu)。 搭建MySQL主從庫(kù)注意點(diǎn)： 1.主庫(kù)和從庫(kù)的 server-id 一