Symptoms
When setting Imunify360 Default Blocking Mode to "All closed, except specified" and not specifying port 3306 to close the port, Security Advisor reports the following:
The MySQL service is currently configured to listen on all interfaces: (bind-address=*) Configure bind-address=127.0.0.1 in /etc/my.cnf or use the server’s firewall to restrict access to TCP port “3306”.
Description
Security Advisor should not report MySQL is configured to listen on all interfaces since access to port 3306 is restricted by Imunify360 Default Blocking Mode with the "All closed, except specified" option and port 3306 not being specified.
We've opened an internal case for our development team to investigate this further. For reference, the case number is CPANEL-48877. Follow this article to receive an email notification when a solution is published in the product.
Workaround
Follow Security Advisor's first suggestion to add the following to /etc/my.cnf and restart MySQL to load the change:
bind-address=127.0.0.1To restart MySQL, run the following script in SSH as root:
/scripts/restartsrv_mysql