(覚え書き) col MySQL5.6のセットアップ

2013/03/21 頃の作業

サービス起動

すでに公式のrpmをインストール済みの状態

$ sudo service mysql start

5.6からはrootの初期パスワードが乱数で自動生成されるようになり /root/.mysql_secret に記述されます。

$ sudo cat /root/.mysql_secret
# The random password set for the root user at Thu Mar 21 20:57:22 2013 (local time): KBqBTS82

ということでさっくりパスワードを変更するのとクライアントの動作確認を行います。

rootパスワードの設定

$ mysql -u root -p
Enter password: (上記パスワード入力)
Welcome to the MySQL monitor.  Commands end with ; or \g.
...(略)
> SET PASSWORD FOR root@localhost=PASSWORD('new_passwd');
> exit
$ mysql -u root -p
Enter password:

新しいパスワードでログインできることを確認したらOKです。
続いてセットアップ用の推奨（？）コマンドを実行します。

MySQLセットアップ

$ sudo mysql_secure_installation
NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MySQL
SERVERS IN PRODUCTION USE! PLEASE READ EACH STEP CAREFULLY!


In order to log into MySQL to secure it, we'll need the current
password for the root user. If you've just installed MySQL, and
you haven't set the root password yet, the password will be blank,
so you should just press enter here.


Enter current password for root (enter for none):
OK, successfully used password, moving on...


Setting the root password ensures that nobody can log into the MySQL
root user without the proper authorisation.


You already have a root password set, so you can safely answer 'n'.


Change the root password? [Y/n] n # 既に先ほど変更したので n
... skipping.


By default, a MySQL installation has an anonymous user, allowing anyone
to log into MySQL without having to have a user account created for
them. This is intended only for testing, and to make the installation
go a bit smoother. You should remove them before moving into a
production environment.


Remove anonymous users? [Y/n] Y # 匿名ユーザを削除
... Success!


Normally, root should only be allowed to connect from 'localhost'. This
ensures that someone cannot guess at the root password from the network.


Disallow root login remotely? [Y/n] Y # root ユーザでのリモートからのログインを禁止
... Success!


By default, MySQL comes with a database named 'test' that anyone can
access. This is also intended only for testing, and should be removed
before moving into a production environment.


Remove test database and access to it? [Y/n] Y # test データベースを削除
- Dropping test database...
... Success!
- Removing privileges on test database...
... Success!


Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.


Reload privilege tables now? [Y/n] Y # 権限テーブルをリロード
... Success!


All done! If you've completed all of the above steps, your MySQL
installation should now be secure.


Thanks for using MySQL!


Cleaning up...

確認してみます。

$ mysql -u root -p
Enter password:
> show databases;

+--------------------+
| Database |
+--------------------+
| information_schema |
| mysql |
| performance_schema |
+--------------------+

(インデントがずれるのが悲しいが)testDBがないのが分かります。
ちなみに5.6からは my.cnf の初期位置は /usr/my.cnf になってしまっ
たようです。

本当はさらにmy.cnfの設定を変更するのですが、面倒なので放置。