HOWTO: Secure mysql database

This tutorial shows how to secure the mysql database with a password.

Keep in mind: To get Server2Go working with a password secured database, you will need the version 1.4.4 or newer of Server2Go and the Server2GoConfigurator from the VIP downloads (http://www.server2go-web.de/download/download.html).

Only for being sure: Make a backup f your dbdir directory first!
After this change the LocalMirror Parameter in the pms_config.ini to 0 Start Server2Go

You can set the password of mysql database using the phpmyadmin user management or set it directly with the mysql commandline utility. The first way is recommended, cause you need to handle all the SQL Stuff.
Set the password of the root user to every password you like to have. Note that after you set the root password to a value you will have no possibility to access the database until you changed the settings of server2go.

Please stop your running Server2Go instance by closing the browser window and/or via the tray icon.
Open the Server2GoConfigurator.exe and select the Server2Go.exe path of your Server2Go installation. After loading you will see the currently used username and password. You can change this to the same value you used to secure your mysql database.

Saving your changes writes these values directly into the server2go.exe file (encrypted). So if you have activated a virus scanner it can happen that you will get a message complaining of a virus, just ignore that.

From now on you need to use a password for getting a connection with PHP's mysql functions. Of course it doesn't make sense to set a database password for mysql when this password is visible in every PHP-Script. So encrypting your scripts is highly recommended. Please take a look at the PHP-Encryption FAQ (How to encrypt your PHP scripts) to see how to do.

If everything works like expected you can delete your dbdir backup and reset the LocalMirror Parameter in the pms_config.ini to the value it had before step 1.

You are done