If you are running mysql together with management server in one box, you will see mysql's port, you can add iptables rules to harden the access to your mysql server.
Kelven From: Maurice Lawler <[email protected]<mailto:[email protected]>> Reply-To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Date: Monday, April 29, 2013 2:11 PM To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Subject: Re: Typical Port Listing? I have never seen a server display MYSQL port openly like that. So, to me, that feels a little insecure and not very typical. On Apr 29, 2013, at 05:08 PM, Kelven Yang <[email protected]<mailto:[email protected]>> wrote: It is typical Kelven From: Maurice Lawler <[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>> Reply-To: "[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>" <[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>> Date: Monday, April 29, 2013 1:56 PM To: "[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>" <[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>> Cc: "[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>" <[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>> Subject: Re: Typical Port Listing? I ran it from my local work station, against my primary IP address (the host node) On Apr 29, 2013, at 04:40 PM, Chip Childers <[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>> wrote: On Mon, Apr 29, 2013 at 4:37 PM, Maurice Lawler <[email protected]<mailto:[email protected]><mailto:[email protected]<mailto:[email protected]>>> wrote: > Hello: > > Is it typical when doing nmap -P0 to get the listing as follows: > > > 23/tcp filtered telnet > 111/tcp open rpcbind > 2049/tcp open nfs > 3306/tcp open mysql > 5900/tcp open vnc > 5901/tcp open vnc-1 > 5902/tcp open vnc-2 > 8080/tcp open http-proxy > 9090/tcp open zeus-admin > > > - Maurice What did you run it against?
