diff options
| author | Guilhem Moulin <guilhem@fripost.org> | 2013-12-15 22:51:44 +0100 | 
|---|---|---|
| committer | Guilhem Moulin <guilhem@fripost.org> | 2015-06-07 02:51:25 +0200 | 
| commit | faee1bbc276b63a81f3b81eae0f02bcaffabca6d (patch) | |
| tree | fccc7fe2893b5a245dc56a3e1b86fbbef1f18de6 /roles/common-SQL/files | |
| parent | 8dfcb7e08442b4af8f285bdd7732750938b25b9f (diff) | |
Load relevant MySQL authplugins.
Also, turn off all TCP/IP listener ports.
Diffstat (limited to 'roles/common-SQL/files')
| -rw-r--r-- | roles/common-SQL/files/etc/mysql/my.cnf | 129 | 
1 files changed, 129 insertions, 0 deletions
| diff --git a/roles/common-SQL/files/etc/mysql/my.cnf b/roles/common-SQL/files/etc/mysql/my.cnf new file mode 100644 index 0000000..0d6aa8a --- /dev/null +++ b/roles/common-SQL/files/etc/mysql/my.cnf @@ -0,0 +1,129 @@ +# +# The MySQL database server configuration file. +# +# You can copy this to one of: +# - "/etc/mysql/my.cnf" to set global options, +# - "~/.my.cnf" to set user-specific options. +#  +# One can use all long options that the program supports. +# Run program with --help to get a list of available options and with +# --print-defaults to see which it would actually understand and use. +# +# For explanations see +# http://dev.mysql.com/doc/mysql/en/server-system-variables.html + +# This will be passed to all mysql clients +# It has been reported that passwords should be enclosed with ticks/quotes +# escpecially if they contain "#" chars... +# Remember to edit /etc/mysql/debian.cnf when changing the socket location. +[client] +port		= 3306 +socket		= /var/run/mysqld/mysqld.sock + +# Here is entries for some specific programs +# The following values assume you have at least 32M ram + +# This was formally known as [safe_mysqld]. Both versions are currently parsed. +[mysqld_safe] +socket		= /var/run/mysqld/mysqld.sock +nice		= 0 + +[mysqld] +# +# * Basic Settings +# +user		= mysql +pid-file	= /var/run/mysqld/mysqld.pid +socket		= /var/run/mysqld/mysqld.sock +plugin-load = auth_socket=auth_socket.so +port		= 3306 +basedir		= /usr +datadir		= /var/lib/mysql +tmpdir		= /tmp +lc-messages-dir		 = /usr/share/mysql +character_set_server = utf8 +collation_server	 = utf8_unicode_ci +skip-external-locking +# +# Instead of skip-networking the default is now to listen only on +# localhost which is more compatible and is not less secure. +#bind-address		= 127.0.0.1 +skip-networking +# +# * Fine Tuning +# +key_buffer		= 16M +max_allowed_packet	= 16M +thread_stack		= 192K +thread_cache_size	= 8 +# This replaces the startup script and checks MyISAM tables if needed +# the first time they are touched +myisam-recover		= BACKUP +#max_connections	= 100 +#table_cache		= 64 +#thread_concurrency	= 10 +# +# * Query Cache Configuration +# +query_cache_limit	= 1M +query_cache_size	= 16M +# +# * Logging and Replication +# +# Both location gets rotated by the cronjob. +# Be aware that this log type is a performance killer. +# As of 5.1 you can enable the log at runtime! +#general_log_file	= /var/log/mysql/mysql.log +#general_log		= 1 +# +# Error logging goes to syslog due to /etc/mysql/conf.d/mysqld_safe_syslog.cnf. +# +# Here you can see queries with especially long duration +#log_slow_queries	= /var/log/mysql/mysql-slow.log +#long_query_time = 2 +#log-queries-not-using-indexes +# +# The following can be used as easy to replay backup logs or for replication. +# note: if you are setting up a replication slave, see README.Debian about +#		other settings you may need to change. +#server-id			= 1 +#log_bin			= /var/log/mysql/mysql-bin.log +expire_logs_days	= 10 +max_binlog_size		= 100M +#binlog_do_db		= include_database_name +#binlog_ignore_db	= include_database_name +# +# * InnoDB +# +# InnoDB is enabled by default with a 10MB datafile in /var/lib/mysql/. +# Read the manual for more InnoDB related options. There are many! +# +# * Security Features +# +# Read the manual, too, if you want chroot! +# chroot = /var/lib/mysql/ +# +# For generating SSL certificates I recommend the OpenSSL GUI "tinyca". +# +# ssl-ca=/etc/mysql/cacert.pem +# ssl-cert=/etc/mysql/server-cert.pem +# ssl-key=/etc/mysql/server-key.pem + + + +[mysqldump] +quick +quote-names +max_allowed_packet	= 16M + +[mysql] +#no-auto-rehash	# faster start of mysql but no tab completition + +[isamchk] +key_buffer		= 16M + +# +# * IMPORTANT: Additional settings that can override those from this file! +#	The files must end with '.cnf', otherwise they'll be ignored. +# +!includedir /etc/mysql/conf.d/ | 
