当前位置:网站首页>Fix vulnerability - mysql, ES
Fix vulnerability - mysql, ES
2022-07-05 18:06:00 【Long Cheng Leo】
One 、 Vulnerability description
Use Green Alliance Scan for leaks :
1、Elasticsearch Unauthorized access
2、mysql server Security vulnerabilities 、 Component security vulnerability
Two 、 Vulnerability investigation
Through the website National Information Security Vulnerability Database View specific vulnerability solutions
1、Elasticsearch You need to add a security authentication plug-in http-basic
because es Version together , The use of http-basic It's not the same way , With my es 6.8.23 For example :
http-basic Download package :
link :https://pan.baidu.com/s/1E_ckdsjnlmUszsSFq_i1AA
Extraction code :zbfn
2、mysql The version of is too low , Change to a higher version
8.0.28 This exists in previous versions CVE-2021-22570 Loophole , at present mysql The latest is 8.0.29 edition , So upgrade mysql To 29 On the version
边栏推荐
- 小白入门NAS—快速搭建私有云教程系列(一)[通俗易懂]
- Sophon Base 3.1 推出MLOps功能,为企业AI能力运营插上翅膀
- nano的CAN通信
- "Xiaodeng in operation and maintenance" is a single sign on solution for cloud applications
- EasyCVR接入设备开启音频后,视频无法正常播放是什么原因?
- Cmake tutorial step5 (add system self-test)
- Binder开辟线程数过多导致主线程ANR异常
- RSE2020/云检测:基于弱监督深度学习的高分辨率遥感图像精确云检测
- Numerical calculation method chapter8 Numerical solutions of ordinary differential equations
- Privacy computing helps secure data circulation and sharing
猜你喜欢
记录Pytorch中的eval()和no_grad()
How awesome is the architecture of "12306"?
What are the changes in the 2022 PMP Exam?
华夏基金:基金行业数字化转型实践成果分享
Sophon AutoCV:助力AI工业化生产,实现视觉智能感知
Star ring technology data security management platform defender heavy release
Sophon Base 3.1 推出MLOps功能,为企业AI能力运营插上翅膀
Leetcode exercise - 206 Reverse linked list
Sophon kg upgrade 3.1: break down barriers between data and liberate enterprise productivity
Memory management chapter of Kobayashi coding
随机推荐
Penetrate the whole intranet through socks agent
登录连接 CDB 和 PDB
多线程(一) 进程与线程
What are the requirements for PMP certification? How much is it?
职场进阶指南:大厂人必看书籍推荐
基于YOLOv3的口罩佩戴检测
华夏基金:基金行业数字化转型实践成果分享
Sophon kg upgrade 3.1: break down barriers between data and liberate enterprise productivity
Isprs2022 / Cloud Detection: Cloud Detection with Boundary nets Boundary Networks Based Cloud Detection
What are the changes in the 2022 PMP Exam?
从XML架构生成类
Cmake tutorial Step2 (add Library)
How can cluster deployment solve the needs of massive video access and large concurrency?
怎么选择外盘期货平台最正规安全?
Introduction to VC programming on "suggestions collection"
LeetCode每日一题:合并两个有序数组
Size_t 是无符号的
FCN: Fully Convolutional Networks for Semantic Segmentation
神经网络自我认知模型
第十一届中国云计算标准和应用大会 | 华云数据成为全国信标委云计算标准工作组云迁移专题组副组长单位副组长单位