当前位置:网站首页>Fix vulnerability - mysql, ES
Fix vulnerability - mysql, ES
2022-07-05 18:06:00 【Long Cheng Leo】
One 、 Vulnerability description
Use Green Alliance Scan for leaks :
1、Elasticsearch Unauthorized access
2、mysql server Security vulnerabilities 、 Component security vulnerability
Two 、 Vulnerability investigation
Through the website National Information Security Vulnerability Database View specific vulnerability solutions
1、Elasticsearch You need to add a security authentication plug-in http-basic
because es Version together , The use of http-basic It's not the same way , With my es 6.8.23 For example :
http-basic Download package :
link :https://pan.baidu.com/s/1E_ckdsjnlmUszsSFq_i1AA
Extraction code :zbfn
2、mysql The version of is too low , Change to a higher version
8.0.28 This exists in previous versions CVE-2021-22570 Loophole , at present mysql The latest is 8.0.29 edition , So upgrade mysql To 29 On the version
边栏推荐
- GFS分布式文件系统
- "Xiaodeng in operation and maintenance" is a single sign on solution for cloud applications
- 使用Jmeter虚拟化table失败
- 【PaddlePaddle】 PaddleDetection 人脸识别 自定义数据集
- 记一次使用Windbg分析内存“泄漏”的案例
- 怎么选择外盘期货平台最正规安全?
- Size_t 是无符号的
- What are the requirements for PMP certification? How much is it?
- OpenShift常用管理命令杂记
- VC编程入门浅谈「建议收藏」
猜你喜欢
Leetcode daily question: the first unique character in the string
ISPRS2020/云检测:Transferring deep learning models for cloud detection between Landsat-8 and Proba-V
星环科技重磅推出数据要素流通平台Transwarp Navier,助力企业实现隐私保护下的数据安全流通与协作
Daily exercise: a series of dates
Image classification, just look at me!
Redis Foundation
Tencent music launched its new product "quyimai", which provides music commercial copyright authorization
ConvMAE(2022-05)
第十一届中国云计算标准和应用大会 | 华云数据成为全国信标委云计算标准工作组云迁移专题组副组长单位副组长单位
![[JMeter] advanced writing method of JMeter script: all variables, parameters (parameters can be configured by Jenkins), functions, etc. in the interface automation script realize the complete business](/img/a6/aa0b8d30913dc64f3c0cd891528c40.png)
[JMeter] advanced writing method of JMeter script: all variables, parameters (parameters can be configured by Jenkins), functions, etc. in the interface automation script realize the complete business
随机推荐
Ten capabilities that cyber threat analysts should have
IDC report: Tencent cloud database ranks top 2 in the relational database market!
Gimp 2.10 tutorial "suggestions collection"
深拷贝与浅拷贝【面试题3】
About Statistical Power(统计功效)
Simulate the hundred prisoner problem
Failed to virtualize table with JMeter
Mask wearing detection based on yolov3
LeetCode每日一题:合并两个有序数组
How awesome is the architecture of "12306"?
Compared with the loss of Wenxin, the performance is improved a lot
EasyCVR接入设备开启音频后,视频无法正常播放是什么原因?
神经网络自我认知模型
Leetcode notes: Weekly contest 300
破解湖+仓混合架构顽疾,星环科技推出自主可控云原生湖仓一体平台
Nanjing University: Discussion on the training program of digital talents in the new era
mybash
ClickHouse(03)ClickHouse怎么安装和部署
Sophon autocv: help AI industrial production and realize visual intelligent perception
Can communication of nano