I am not sure if it’s possible to perform cross-account MySQL connections. I have 3 accounts open, all of which have DBs. My website, JriMail, connects client-side to JriGlobali to provide information needed to connect to their JriMail account. I was wondering if it was possible to connect to the DB that’s on a seperate account, considering that it’s hosted on InfinityFree.
I want to improve the security of my JriMail service, and also keep the service running with little downtime. If it isn’t possible to cross-connect to MySQL DBs, that would decrease my uptime. I am switching from client-side transfer to server-side transfer because of a recent breach on my end, but I don’t want to bring the site offline for hours transfering DBs to one account.
It’s possible, yes, but not officially supported or recommended.
Our database servers cannot be used from outside our hosting. But from within our hosting, any website server can connect to any database server.
As far as I know, account assignments to web servers and database servers is independent, meaning two different hosting accounts on the same web server might be assigned to two different database servers.
Of course, if you want to use a database from account A on account B, you’ll need to distribute the database credentials from account A to account B to work.
Be careful with this though. You wouldn’t be the first to try to migrate their website to a different account, only move the files but not the database, see that the site works (because of cross account DB access) and conclude that everything was successful.
But now the old account is not getting any web traffic, meaning it will get suspended for inactivity. But that will also disable the databases of that account, which breaks the website on the new account.
All three of my accounts get a decent amount of traffic, so I wouldn’t see this being an issue for a while. I only need cross-database access for users to continue using my Services, while I back-up the JriGlobali DB and transfer it to the JriMail account to complete server-side verification.
If any issues were to arise, I can have my site “poke” [Goto site, site returns back] the account that hosted my DB before the transfer to keep it open. [For a while. After that if it closes, it closes.]
Interesting. How would the servers know when an outsider is connecting, and when an insider is?
Why are you able to connect to a printer on your own WiFi network but the rest of the world isn’t able to do that? It’s because they are connected to the same local network. And because the local network is local, it’s not possible to connect to it from the outside world.
But even without an internal network, it can easily be done with firewall rules. Simply allow access from the web servers, and block everything else.
Unfortunately that argument is no longer valid, printers are very much accessible to the world and it’s and issue too:
But Admin is right, a better example may be gaming, you can have a LAN network game, and a WLAN game. When you play a LAN game, only people on your own network can view it, people outside the network don’t have access to the game port, even if they know it (firewalls!). If your on a WLAN game, the router forwards the port out to open internet, so anyone with knowledge of the IP and port can access it.
The printers listed in that articles appear to be connected to the public internet, not a private network, so it doesn’t really count. But in retrospect, printers is still a bad argument with many modern printers having cloud printing functionality.
Chromecasts might be another example, but I’m not sure how familiar everyone is with those.
Chromecasts are exposed as well, remote control is a feature. One would hope that there would be much better security / less access vulnerabilities as it’s backed by Alphabet, but honestly who knows.
I believe that Roku devices could be counted into this. The remote control feature could be accessed publicly, unless configured to only be visible on its network.
I used to find googledorks interesting and was always amazed how many devices were connected to the internet often with the default login details unchanged
loo