一片春愁待酒浇。江上舟摇,楼上帘招。秋娘渡与泰娘桥,风又飘飘,雨又萧萧。何日归家洗客袍,银字笙调,心字香烧。流光容易把人抛,红了樱桃,绿了芭蕉。
1.redis
(1)安装redis
[root@localhost local]# mkdir redis
[root@localhost local]# cd ./redis
[root@localhost redis]# wget http://download.redis.io/releases/redis-5.0.5.tar.gz
--2023-01-22 02:26:38-- http://download.redis.io/releases/redis-5.0.5.tar.gz
正在解析主机 download.redis.io (download.redis.io)... 45.60.125.1
正在连接 download.redis.io (download.redis.io)|45.60.125.1|:80... 已连接。
已发出 HTTP 请求,正在等待回应... 200 OK
长度:1975750 (1.9M) [application/octet-stream]
正在保存至: “redis-5.0.5.tar.gz”
100%[==============================================================>] 1,975,750 3.30MB/s 用时 0.6s
2023-01-22 02:26:40 (3.30 MB/s) - 已保存 “redis-5.0.5.tar.gz” [1975750/1975750])
[root@localhost redis]# tar -zxvf redis-5.0.5.tar.gz
redis-5.0.5/
redis-5.0.5/.gitignore
redis-5.0.5/00-RELEASENOTES
LINK redis-benchmark
INSTALL redis-check-rdb
INSTALL redis-check-aof
.......
Hint: It's a good idea to run 'make test' ;)
make[1]: 离开目录“/usr/local/redis/redis-5.0.5/src”
[root@localhost redis-5.0.5]# cd ./src
[root@localhost src]# make install
CC Makefile.dep
Hint: It's a good idea to run 'make test' ;)
INSTALL install
INSTALL install
INSTALL install
INSTALL install
INSTALL install
#在src目录执行./redis-server ../redis.conf即可启动redis
[root@localhost src]# ./redis-server ../redis.conf
45054:C 22 Jan 2023 02:35:58.825 # oO0OoO0OoO0Oo Redis is starting oO0OoO0OoO0Oo
45054:C 22 Jan 2023 02:35:58.825 # Redis version=5.0.5, bits=64, commit=00000000, modified=0, pid=45054, just started
45054:C 22 Jan 2023 02:35:58.825 # Configuration loaded
45054:M 22 Jan 2023 02:35:58.826 * Increased maximum number of open files to 10032 (it was originally set to 1024).
_._
_.-``__ ''-._
_.-`` `. `_. ''-._ Redis 5.0.5 (00000000/0) 64 bit
.-`` .-```. ```\/ _.,_ ''-._
( ' , .-` | `, ) Running in standalone mode
(2)禁止网络访问Redis服务
[root@localhost redis-5.0.5]# ls
00-RELEASENOTES COPYING Makefile redis.conf runtest-moduleapi src
BUGS deps MANIFESTO runtest runtest-sentinel tests
CONTRIBUTING INSTALL README.md runtest-cluster sentinel.conf utils
[root@localhost redis-5.0.5]# vim redis.conf
搜索bind /bind
只监听自己
(3)设置防火墙过滤
(4)禁止高危命令
(5)开启密码验证
修改配置文件requirepass,重启服务,再次使用数据库命令是需要auth xxxx后才可以执行
(6)使用小权限用户运行程序
(7)备份和恢复数据
备份数据库为dump.rdb
2.mongo
(1)制定日志与数据库存放位置
(2)更改默认端口
(3)只监听业务流网卡
(4)开启认证功能
(5)备份与恢复
建立管理员账户,备份账户,恢复账户
回到shell环境
将本机的admin数据库使用bkuser账户备份到/tmp目录
3.mysql
(1)修改密码
(2)删除默认数据库和用户
(3)变更DBA用户名
(4)在账户管理时使用加密算法
(5)更改mysql启动用户
(6)限制远程连接数
(7)清理mysql命令历史
(8)禁止mysql读取本地文件
(9)禁止将表导出到文件
(10)日常备份数据库