Protecting Saleculator Database from Ransomware Attacks

Saleculators allowed for remote access with DMZ enabled are prone to attacks. Follow below notes to stop this.

1. NEVER enable DMZ for remote access. It opens all the doors(ports) of router for hackers. Forward only port 80(Webin) and port 22(Putty).
2. CHANGE default MySQL root password from “password” to something else.
To change the root password,
Step 1: Under Saleculator configuration, for database password give new password and save.
Step 2: Use the command mysql_secure_installation from terminal to change root password.
Step 3: Edit Webin configuration file “nano /var/www/application/config/database.php” and set new password.

Forward port 3306 for remote database access. Execute below mysql statement for remote access.
GRANT ALL PRIVILEGES ON SALECULATOR.* TO `root`@`%` IDENTIFIED BY `newpassword` WITH GRANT OPTION;

If the new database password is saleculator, use below line in Saleculator.properties.
db.password=crypt:85811D6FEFF95AD8424FD4E62735F122

0 Comments

Leave a Reply

Arrow-up