| Table of Contents |
|---|
Introduction
You may wish to change the defaults for several sensitive items before deploying Open-AudIT. These are detailed below.
MySQL credentials
Open-AudIT User
Open-AudIT (as per any normal web application) uses a configured set of credentials to access the MySQL database.
...
| Code Block |
|---|
$db['default']['username'] = "YOUR_USER"; $db['default']['password'] = "YOUR_PASSWORD"; |
Root User
Changing the password of the MySQL root user can also be completed as above. I would recommend the below though, for safety.
...
| Code Block |
|---|
SELECT User, Host, Password FROM mysql.user; |
Restricting MySQL to localhost
On our shipped version for Windows, we already restrict to localhost.
...
| Code Block |
|---|
sudo grep -R bind /etc/mysql/ |
Credentials Encryption Key
Open-AudIT encrypts credentials when it stores them in the database, but we must be able to decrypt them in order to use them when querying devices. Because this is reversible encryption, we need a shared secret (or key). This is kept in the file:
...
Exporting, deleting and Importing can be done using the GUI.
Admin User and Licensing
You are free to change the password for the Admin user, but the user name itself should be left as is. If changed the license entry will be broken.
...