Building CSV list

**familynow** · 30 Sep 2012, 03:34 PM

I'm a bit concerned then...I had a chat session with my host and the csr was able to connect on 3G with an app on his phone. He used the exact same credentials I used...In light of that I suspect it doesn't work for me because I don't have 3306 open on my firewall. I can confirm that easily. More importantly, should I enquire with the host about possible security risks? It seems logical to me that only localhost and possibly a few select servers within the hosts network shoud have such access.

**Limitless** · 30 Sep 2012, 03:51 PM

I would say localhost only, unless they are doing mysql backups for you <or> your sql server is hosted on a different server than your website.

There shouldn't be another need for any host (on their network) to access your db port.

A firewall on your PC should allow any outbound connection to a remote host (inbound would be blocked).

A quick test would be telnet to remote host on port 3306.

cmd prompt -> telnet remote.host.name 3306 <enter>

Ctrl C to esc out of it if you get a connection.

**familynow** · 1 Oct 2012, 12:19 AM

Originally Posted by Limitless

...your sql server is hosted on a different server than your website.

I would think it is since it's a shared enviro.

Originally Posted by Limitless

A firewall on your PC should allow any outbound connection to a remote host (inbound would be blocked).

perhaps for some but I do SPI in both directions.

**Limitless** · 1 Oct 2012, 02:27 AM

Originally Posted by familynow

I would think it is since it's a shared enviro.

perhaps for some but I do SPI in both directions.

All of my web sites on 'shared' servers have local mysql instances. Could be different in your case, check your configure.php files.

But if it was blocking outbound, you should have been prompted.

If you are behind a NAT, a local PC firewall is silly and causes more issues than its worth...