New Feature - Open port 3306?

[freeassign]

First, this service is EXCELLENT. Its way more than I'd have expected from most paid hosts, and its well, free. . .

However there is one feature that I need which isn't available, so I thought I'd suggest it here.

I created a Java-based MySQL database manager, which I've been using to create entirely database driven sites (ie. all my php scripts are in the database, except a single 'dispatcher'. My Java software is analogous to an FTP client.)

The problem is that, as I've read in other posts, your firewall blocks all queries to/from port 3306, except those on a white list. This prevents me from using my Java DB manager. Since my laptop's IP changes several times a day, I can't be added to the whitelist.

From a developer's standpoint, I'd love to see you guys open up 3306 completely - and only use CPanel to allow/deny certain hosts. I've never administered a server, so I don't know the security/abuse implications of doing that. Nor do I know how many people other than me would benefit from such a change.

Are there plans for that in the future?. . . if not, just thought I'd throw it out there.

Also, does anyone know if port 3306 is open on the paid servers? I certainly wouldn't mind paying for great service/support like this, as long as I can get remote db access from my laptop.

Thanks!
Bill

 

[Slothie]

You could use freesql.org though, a rather portable database which I often use for development before porting it to a closed production environment

 

[freeassign]

Thanks Slothie. This is great. I'm going to play around with it a bit, but it has a pretty 'temporary' look to it as you suggested in your post. I'd like to find a good permanent db host.

Do you know if the paid x10 servers allow queries to 3306 through the firewall?

 

[Laughing4life]

i think they do hmm

 

[Micro]

The paid servers most probably do, you will have to talk to corey.

The issue with opening 3306 is that im sure there is a flaw where someone can crash the DB server by spamming it with requests / logins whatever.

freesql.org has been round for about 4 years.

 

[freeassign]

Thanks for the reply. Hopefully Corey will pop in and tell us if the paid servers do.

The issue with opening 3306 is that im sure there is a flaw where someone can crash the DB server by spamming it with requests / logins whatever.

I'm pretty sure that's an issue with any open port, including 80. Firewalls generally detect repeat requests/failed logins and put them on a blocked list. Just for my own knowledge, do you know why this is more difficult for 3306?

 

[Corey]

The paid server has it open.

The reason it is closed is not only for security but for high resource usage. If we left it open a lot of people would use their accounts for solely MySQL Access which is not allowed on the free plans. Picture 500 people all using the server for just the database. This would cause issues for all the people that are actually hosting sites on the server.

Now regarding the security portion, the firewall will catch people trying to brute force or other malicious attempts, BUT with so many databases it would put a huge strain on the server to parse all the extra logs for attempts. By just blocking the port it cuts down hugely on resource usage.

-Corey

 

[freeassign]

Thanks for the info Corey. That makes sense. I hope some day you figure out a way stamp out the abuse and make it feasible, but this service still rocks.

I'll just finish developing my new site locally and then probably open a paid account.