Quote:
Originally Posted by moofta
You don't I'm sure, I did emphasise the paranoid aspect 
But it's not over TLS/SSL so basically sent in clear text over the net. I am a little paranoid about SQL logins over the net due to things I've encountered at work in the past... Mind you, see http://heartbleed.com/
I think it is fair to say that you should disable the port forwarding on your router after a session though unless you have a compelling reason not to (being lazy is by definition not compelling!) |
Just restrict remote logins to IP specificly and you'll be fine.
Even with the MySQL hash exploit as long as you restrict via IP you will be fine.