1
00:00:01,180 --> 00:00:07,790
Now that we have Aposhian stalled we can go ahead and install essential services including my rescue

2
00:00:07,790 --> 00:00:13,450
Well p p and p p by admin.

3
00:00:13,700 --> 00:00:16,020
We'll start with my as well.

4
00:00:16,070 --> 00:00:19,280
My school is a database management system.

5
00:00:19,430 --> 00:00:27,250
It organizes and provides access to databases where you can store information a common example is storing

6
00:00:27,250 --> 00:00:28,590
customer information.

7
00:00:28,600 --> 00:00:46,290
If you operate an e-commerce site to install my ask you will take the following command.

8
00:00:46,310 --> 00:00:53,310
Now if you're logged into the root account you don't have to type in pseudo But I'll just keep it there

9
00:00:53,310 --> 00:00:57,040
because I'm copying and pasting the command lines to save a bit of time.

10
00:00:57,410 --> 00:00:59,560
So sudo apt install my s to all.

11
00:00:59,560 --> 00:01:00,530
Gosh server.

12
00:01:01,700 --> 00:01:05,830
And press enter.

13
00:01:05,940 --> 00:01:12,720
So at the first prompt which just indicates that it's going to take 162 megabytes of additional disk

14
00:01:12,720 --> 00:01:14,640
space which we're fine with.

15
00:01:14,640 --> 00:01:24,140
Type in Y and press enter.

16
00:01:24,380 --> 00:01:29,130
So again you'll see the progress bar appears and it should go by fairly quickly.

17
00:01:43,620 --> 00:01:48,860
When the installation is complete we can secure our my Estival installation.

18
00:01:48,900 --> 00:01:54,270
This is a good practice and it just means getting rid of some of the dangerous default settings that

19
00:01:54,270 --> 00:01:59,050
can be a security risk to your database server so to do so.

20
00:01:59,050 --> 00:02:00,880
Type in the following command.

21
00:02:09,570 --> 00:02:16,850
And press enter.

22
00:02:16,940 --> 00:02:20,890
So now go through the various prompts to complete this installation.

23
00:02:22,310 --> 00:02:29,050
The first one is it's asking if we want to use the validate password plug in.

24
00:02:29,060 --> 00:02:33,630
This can be used to enhance password security by default.

25
00:02:33,650 --> 00:02:41,060
So any time you want to set a password it will force you to stick to a certain format for the password

26
00:02:41,090 --> 00:02:42,200
secure format.

27
00:02:44,020 --> 00:02:48,720
It's great to use this if you're comfortable with Majeski well.

28
00:02:48,880 --> 00:02:54,040
Also if you don't intend on using many plug ins for example Wordpress or if you're going to be installing

29
00:02:54,040 --> 00:02:59,760
ph p.m.-I admin there can be certain things that conflict with this particular plug in.

30
00:02:59,770 --> 00:03:03,880
So for this purpose we'll go ahead and type in no.

31
00:03:04,180 --> 00:03:08,670
And press enter.

32
00:03:08,800 --> 00:03:12,810
So now we'll have to enter a password for mine as well.

33
00:03:12,810 --> 00:03:14,740
This is to connect to your database server.

34
00:03:15,950 --> 00:03:20,150
So again just make sure that it's something secure but something you can remember as well.

35
00:03:21,010 --> 00:03:27,040
If you pick a very complicated password Do remember to write it down and store it somewhere safe.

36
00:03:35,620 --> 00:03:43,200
I'll just go ahead and re-enter it and press enter.

37
00:03:43,300 --> 00:03:44,230
You'll try that one more time

38
00:03:54,570 --> 00:03:59,120
K so the next prompt here is asking about anonymous users.

39
00:03:59,220 --> 00:04:05,490
It says by default to my usual installation has an anonymous user allowing anyone to log into my eschew

40
00:04:05,590 --> 00:04:11,420
all without having to have a user account created for them.

41
00:04:11,430 --> 00:04:16,560
This is intended only for testing and to make the installation go a bit smoother.

42
00:04:16,560 --> 00:04:22,120
You should remove that you should remove them before moving into a production environment.

43
00:04:22,170 --> 00:04:27,290
So even though we're just setting this up the ultimate goal is to move into production.

44
00:04:27,840 --> 00:04:33,850
So we'll go ahead and select YES to remove the anonymous user and press ENTER

45
00:04:37,970 --> 00:04:43,640
OK the next thing is to do we want to disallow route log in remotely.

46
00:04:43,660 --> 00:04:49,540
Typically you only want to allow the local host to log in as root.

47
00:04:49,540 --> 00:04:58,060
This is a this is a great practice for security and so when you go ahead and select YES disallow route

48
00:04:58,060 --> 00:05:02,770
log in so remote users can not log in as root and press enter

49
00:05:06,830 --> 00:05:12,050
by default my escrowed comes with a database named test that anyone can access.

50
00:05:12,050 --> 00:05:17,730
This is also intended only for testing and should be removed before moving into a production environment.

51
00:05:18,750 --> 00:05:23,780
So again we don't need this test database or go ahead and type Y and press enter.

52
00:05:27,260 --> 00:05:31,150
Case The next step here is reloading the privilege tables.

53
00:05:31,310 --> 00:05:35,860
And this will ensure that all the changes we just made take effect immediately.

54
00:05:36,410 --> 00:05:45,250
So TDY and press enter and there it is we're all done with setting up my rescue will.

55
00:05:45,460 --> 00:05:52,720
One last item that remains here is to change our authentication method that my tool uses to authenticate

56
00:05:52,720 --> 00:05:59,340
the root user although the default authentication method does offer some additional security.

57
00:05:59,360 --> 00:06:04,920
It conflicts with other tools that we need to install later such as HP my admin.

58
00:06:04,940 --> 00:06:12,850
So for this reason we'll need to switch our authentication method from off underscore socket to my rescue

59
00:06:12,850 --> 00:06:20,410
Well native password and you'll understand how this works in just a second this basically means we can

60
00:06:20,410 --> 00:06:24,530
use a regular password to authenticate.

61
00:06:24,750 --> 00:06:33,330
Now to do this you're going to start by typing the following command.

62
00:06:33,350 --> 00:06:37,920
So now we've opened up my ask you will.

63
00:06:38,060 --> 00:06:43,730
Now let's go ahead and check which authentication method each of our might as we'll use your accounts

64
00:06:44,090 --> 00:06:49,620
uses to authenticate to do that type in the following command.

65
00:06:56,160 --> 00:06:56,890
And press enter

66
00:07:01,800 --> 00:07:10,780
that table that you see here does confirm that the root user does in fact connect with auth socket to

67
00:07:10,780 --> 00:07:11,740
change this.

68
00:07:11,860 --> 00:07:15,090
We need to type a command.

69
00:07:15,130 --> 00:07:19,900
So go ahead and paste in the command.

70
00:07:19,930 --> 00:07:22,320
But there is a perimeter will need to change.

71
00:07:22,330 --> 00:07:24,040
So this is the command here.

72
00:07:29,030 --> 00:07:36,540
OK so we want to alter the authentication method for root at localhost.

73
00:07:36,640 --> 00:07:40,870
We want to identify with my rescue all need of password.

74
00:07:41,010 --> 00:07:46,500
Now you need to change over here where it says password you need to type in the password you want to

75
00:07:46,500 --> 00:07:51,160
authenticate with.

76
00:07:51,170 --> 00:07:52,610
OK so I've entered the password.

77
00:07:52,640 --> 00:07:55,910
I want to authenticate with it then go ahead and press enter.

78
00:07:56,920 --> 00:07:58,320
So you see this message query.

79
00:07:58,360 --> 00:07:59,030
OK.

80
00:07:59,320 --> 00:08:03,080
And that tells you that the command was executed successfully.

81
00:08:03,100 --> 00:08:10,280
Now we'll need to run the flush privileges command and this tells the server to reload the grant tables

82
00:08:10,370 --> 00:08:13,800
and put your new changes into effect.

83
00:08:13,820 --> 00:08:15,860
So this is what the command is.

84
00:08:15,860 --> 00:08:19,910
Flush privileges and press enter.

85
00:08:19,950 --> 00:08:25,950
Now that we've completed these steps let's confirm that the root user no longer authenticates using

86
00:08:25,950 --> 00:08:31,300
the office socket plug in.

87
00:08:31,300 --> 00:08:32,800
So take the following command

88
00:08:36,650 --> 00:08:41,470
and press enter.

89
00:08:41,580 --> 00:08:44,720
We can confirm in this table that the root user.

90
00:08:44,730 --> 00:08:51,840
Now authenticates with my Escudo native password and no longer with the office socket plug in.