本文共 2708 字，大约阅读时间需要 9 分钟。

优化后的内容：

以下是执行 mysql_secure_installation 的详细步骤，帮助您安全配置 MySQL 服务器：

1. 启动 MySQL 安全脚本

打开终端，执行以下命令以启动 MySQL 安全配置工具：

sudo mysql_secure_installation

2. 输入当前 MySQL root 密码

如果这是第一次设置密码，MySQL root 用户没有密码，您可以直接按 Enter 键。否则，请输入当前的 root 密码。

3. 设置新的 root 密码

脚本会提示您是否要设置新的 root 密码。建议设置一个强密码以提高安全性。输入 Y 并按 Enter，然后按照提示设置您的新密码。

4. 删除匿名用户

匿名用户允许任何人登录 MySQL，这通常用于测试。请执行以下操作以删除匿名用户：

Y

按 Enter 确认操作。

5. 禁止 root 用户远程登录

为了提升安全性，建议禁止 root 用户从远程设备登录。执行以下操作：

Y

按 Enter 确认。

6. 删除测试数据库

默认安装的 test 数据库允许任何用户访问，建议在生产环境中删除它。执行以下操作：

Y

按 Enter 确认。

7. 重新加载权限表

所有更改将立即生效，您需要重新加载权限表：

Y

按 Enter 确认。

以下是完整示例输出，供参考：

Securing the MySQL server deployment.
Enter password for user root: (输入当前的 root 密码或直接按 Enter 如果没有密码)
The existing password for the user account root has expired. Please set a new password.
New password: (输入新的 root 密码)
Re-enter new password: (重新输入新的 root 密码)
VALIDATE PASSWORD PLUGIN 可以用于测试密码并提高安全性。
它检查密码的强度，并确保用户只能设置安全强的密码。
Would you like to setup VALIDATE PASSWORD plugin
Press y|Y for Yes, any other key for No: Y (根据需要选择是否启用密码验证插件)
Please set the password validation policy:
LOW Length >= 8
MEDIUM Length >= 8, numeric, mixed case, and special characters
STRONG Length >= 8, numeric, mixed case, special characters and dictionary file
Please enter 0 = LOW, 1 = MEDIUM and 2 = STRONG: 1 (选择密码验证策略)
Using existing password for root.
Estimated strength of the password: 100
Change the password for root ((Press y|Y for Yes, any other key for No) : N (如果刚刚设置了密码，这里选择 N)
... skipping.
By default, a MySQL installation has an anonymous user, allowing anyone
to log into MySQL without having to have a user account created for
them. This is intended only for testing, and to make the installation
go a bit smoother. You should remove them before moving into a
production environment.
Remove anonymous users (Press y|Y for Yes, any other key for No) : Y (删除匿名用户)
Success.
Normally, root should only be allowed to connect from ‘localhost’. This
ensures that someone cannot guess at the root password from the network.
Disallow root login remotely (Press y|Y for Yes, any other key for No) : Y (禁止 root 用户远程登录)
Success.
By default, MySQL comes with a database named ‘test’ that anyone can
access. This is also intended only for testing, and should be removed
before moving into a production environment.
Remove test database and access to it (Press y|Y for Yes, any other key for No) : Y (删除测试数据库)
Dropping test database…
Success.
Removing privileges on test database…
Success.
Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.
Reload privilege tables now (Press y|Y for Yes, any other key for No) : Y (重新加载权限表)
Success.
All done!
你已经成功执行了 mysql_secure_installation，并提高了 MySQL 服务器的安全性。

转载地址：http://efbfk.baihongyu.com/