Allow remote connections to your MySQL server

Why would you want to do this? A database server is a precious commodity in the world of data. To have that same server pitch other forms of data and other service could quickly become a detriment to your MySQL in both performance and security categories. Because of this it is wise to isolate that MySQL such that it is only used for that service. But to do this you have to configure that server to be able to serve up databases to remote machines. Although not terribly complicated, without knowing where to look and what to do, this task can be seemingly impossible. But after this tutorial, your databases will be accessible to user/machines you configure – and only those user/machines.

Before we begin

You will be glad to know, assuming you have MySQL up and running, there is no installation necessary for this task. You will need access to the MySQL administrators password as well as administrative access so you can edit a MySQL configuration file. Other than that simple necessity (and a terminal window), you are ready to get cracking.

Editing my.conf

Before you actually start editing the /etc/mysql/my.conf file, I would suggest you back up your current file. Do this with the command:

sudo cp /etc/mysql/my.conf /etc/mysql/my.conf.bak

Now that the file is backed up let’s open this baby up for editing. When you have the file open you are going to want to look for this line:

bind-address =

What the above line does is limit connections to the localhost and only the localhost. You want to comment this line out by changing it to:

 # bind-address =

Now save that file and restart MySQL with the command:

sudo /etc/init.d/mysql restart

When MySQL has restarted you now need to get to the MySQL command prompt.

The mysql prompt

In order to get to the mysql prompt you will want to issue the command:

mysql -u root -p

Where root is the MySQL administrative user (most like it is root).

You will be prompted for the MySQL administrators password. After you have successfully authenticated you will have a new prompt that looks like:


You are now at the MySQL prompt. You only have one command to enter for this to work. You will want to enter this command carefully:

GRANT ALL PRIVILEGES ON *.* TO username@address IDENTIFIED BY  “password”;

Where username is the username on the remote machine that will be connecting, address is the IP address of the remote machine, and password is the password that will be used by the remote user.

When that command is issued successfully you should see something like:

Query OK, 0 rows affected (0.00 sec)

As long as you get Query OK, you should be good to go.

Now when you need to connect from a remote machine you will use the IP address of the MySQL server, the username you entered in the MySQL command prompt, and the username will be the username you entered in the MySQL command prompt.

That’s it. Your MySQL server is ready to accept remote connections.

Don’t forget to secure your Database access via a firewall (ufw, iptables, …)

Be the first to comment

Leave a Reply

Your email address will not be published.