MySQL Security Webinar: Follow-up Q&A

MySQL Security Webinar: Follow-up Q&AThanks to everyone who attended last week’s webinar on MySQL security; hopefully you’ve all gone out and set SELinux to enforcing mode if you weren’t already running that way. If you weren’t able to attend, the recording and slides are available for viewing/download. But now, without further ado, here are the questions which we didn’t have time to cover during the presentation.

Q: Do you have a favorite software firewall you recommend that I can run on an EC2 instance in front of my MySQL server?
A: I’d probably just do this with iptables. Any of the other Linux-based software firewall packages are all going to be wrappers around iptables anyway. However, if your MySQL server is already in EC2, you’re going to be better served by Amazon security groups as your front-line firewall. You can also run inside a VPC for some additional isolation.

Q: What do you use for disk encryption in the cloud environment?
A: I might use GPG if I need to encrypt specific files, or just encrypt data in the database via the MySQL functions or in my application, and there’s also no reason why you can’t use dm-crypt/LUKS in the cloud if you’re willing to accept that mounting the device will require some manual intervention, but for the most part, I think disk encryption for servers is pretty useless, because once you enter the key to unlock and mount the volume, anyone that can get access to that machine has full access to the data. I’ve heard of Gazzang being a possible solution here, but I’ve not personally looked at it, so I can’t speak to its performance or suitability.

Q: How much overhead does SSL put on a heavily-loaded MySQL box?
A: That depends on a lot of factors, such as the cipher in use and the kinds of load you’re running. The slowest part of SSL is the connection setup, so you’re going to see a lot less overhead for replication, connection pooling, or long-running transactions than you would from an application with rapidly connects to the database and then disconnects. There’s a graph on the yaSSL site which shows roughly a 25% penalty at 32 threads, but their benchmarks are from 2011 and they were run on someone’s laptop, so I have my doubts as to how well that translates to modern server-grade hardware.

Q: Can MySQL do LDAP/Kerberos login?
A: You can use the PAM authentication plugin (either the commercial one from Oracle or Percona’s open source version) to authenticate against an LDAP database.

Thanks again for attending and submitting your questions; security is one of those massive topics where it’s only possible to scratch the surface in a one-hour webinar. Later this year I may do a follow-on presentation wherein we skip over all of the system/network/application details and do a deeper dive only on MySQL security-related tweaks and best/worst practices, so stay tuned!

The post MySQL Security Webinar: Follow-up Q&A appeared first on MySQL Performance Blog.


Join me for ‘MySQL 5.6: Advantages in a Nutshell.’ Webinar. March 6 at 10 a.m. PST

"MySQL 5.6: Advantages in a Nutshell." March 6 at 10 a.m. PST with host Peter Zaitsev.

“MySQL 5.6: Advantages in a Nutshell.” March 6 at 10 a.m. PST with host Peter Zaitsev.

This Wednesday (March 6 at 10 a.m. PST) I’ll be presenting a webinar titled “MySQL 5.6: Advantages in a Nutshell.” In this presentation, I will provide a brief overview of the advantages MySQL 5.6 offers. My focus is a practical one – to identify the conditions in which one or another feature can be successfully used providing significant gain, explicitly or transparently. There has been a lot of pretty cool stuff done in MySQL 5.6 and my goal is to get you excited to learn more and try it out.

Reserve your spot now and join me on Wednesday by registering for this free webinar. Please feel free to ask questions, as this will be an interactive event focusing on all things related to MySQL 5.6.

More info on the webinar

The long-awaited MySQL 5.6 is now generally available. You may find yourself wondering what advantages MySQL 5.6 provides and if the benefits exceed the effort of upgrading. This rapidly paced technical session, featuring Percona CEO & founder Peter Zaitsev, will provide an overview of the most important developments in MySQL 5.6 including the new optimizer, replication, and transparency features.

“MySQL 5.6: Advantages in a Nutshell” will be recorded for your convenience. If you missed it, or want to view it again, please visit the Percona MySQL Webinars page, where all of our past sessions are also available for playback. For recent and related posts from Peter on MySQL 5.6, please check out “Percona Welcomes MySQL 5.6!” and “Is MySQL 5.6 slower than MySQL 5.5?

* * *
Save 15% on admission to next month’s Percona Live MySQL Conference and Expo in Santa Clara, Calif. Just enter the following discount code at checkout: PerWebinar1. Register here for the event, which runs April 22-25. Note: This code is available for a limited time only.
* * *

The post Join me for ‘MySQL 5.6: Advantages in a Nutshell.’ Webinar. March 6 at 10 a.m. PST appeared first on MySQL Performance Blog.


Percona MySQL Webinar: Really Large Queries: Advanced Optimization Techniques, Feb. 27

Percona MySQL Webinars

Really Large Queries: Advanced Optimization Techniques: Wednesday, February 27, 2013 10 a.m. PST

Do you have a query you never dared to touch?
Do you know it’s bad, but it’s needed?
Does it fit your screen?
Does it really have to be that expensive?
Do you want to do something about it?

During the next Percona webinar on February 27, I will present some techniques that can be useful when troubleshooting such queries. We will go through case studies (each case study is made from multiple real-world cases). In these cases we were often able to reduce query execution time from 10s of seconds to a fraction of a second.

More info:
Imagine a query that barely fits your monitor screen such as a 7 table join. In this webinar, we will discuss filling the gap between reading explain output and optimizing really large queries. Practical techniques used to address real-world situations will be shared, while pointing out common mistakes organizations often make. The talk will cover topics including:

• How to start optimizing large queries
• The use of denormalization
• The effect of join order

Interested? Register here.

The post Percona MySQL Webinar: Really Large Queries: Advanced Optimization Techniques, Feb. 27 appeared first on MySQL Performance Blog.

Powered by WordPress | Theme: Aeros 2.0 by