- If we use server1 for all files (file server), server2 for mysql database (database server). In order for the websites in server1 to access the database on server2, is it necessary to connect to the ip-address of the second (mysql server)?
In this case, it is a remote mysql connection.
However, I have seen some people comment on a security issue.
remote access to MySQL is not very secure. When your remote computer first connects to your MySQL database, the password is encrypted before being transmitted over the Internet. But after that, all data is transmitted as unencrypted "plain text." If someone was able to view your connection data (for example, a “hacker" by capturing data from an unencrypted Wi-Fi connection that you use), that person will be able to view part or all of your database.
So I'm just wondering how to protect him?
- Allow remote access to mysql from server1 by resolving a static IP address
- allow remote access from server 1 by setting the port allowed to connect to 3306
- to change 3306 to another port?
Any tips?