MariaDB/MySQL

Last change on 2022-05-16 • Created on 2020-01-20 • ID: MA-F2E80

MariaDB/MySQL is an Open Source RDMS (Relational Database Management System) that uses SQL (Structured Query Language) to process information. It is a widely used application for websites which access databases.

MySQL databases on konsoleH

This list shows you all created MySQL databases and the corresponding account. Click on the arrows to change the sorting of the list.
Click on Show database sizes to display the size of each database. Please note that this function may take some time if there are a large number of databases and/or if they are very large.

Creating a MariaDB/MySQL database

On the main page of the MariaDB/MySQL database manager, you will see your list of databases, in which you can view all databases that currently exist.

How to create a new MariaDB/MySQL database:

  1. Click on "Add".
  2. On the following page, you will see the recommended (random) access details for your database. If you wish, you can provide your own password here.
  3. Select a name for the database as well as a name for the corresponding database user.
  4. The main password is the most important. It provides access to the whole database and allows you to create, change, or delete any database information, column, or row.
  5. The R/W (Read/Write) password only gives you read/write access. This is mostly used by the CMS (Content Management Systems) to add or change database information.
  6. The R/O (Read Only) password allows the application to only read information from the database. Information cannot be altered with this password.
  7. (Optional setting) Require SSL: When this is active, it prohibits all unencrypted connections to the database. This can have a negative effect on the accessibility of the database.
  8. Click on "Save" to create the database.
  9. You should receive a message that you successfully created the MariaDB/MySQL database. Click on "MariaDB/MySQL-Databases" to return to your database list.

Tip: If you receive an error message while creating the database, try to change the database name and/or username.

Three passwords for different access rights

When you create a MariaDB/MySQL database in konsoleH, you do not set just one password. You set three different ones. Each password belongs to the same database user but grants different rights. This lets you precisely control what an application is allowed to do with your database.

Password Rights What to use it for
Main password Full access: read, change, and delete data; create and drop tables; modify the structure Administrative tasks, e.g. logging in to phpMyAdmin or importing a backup
R/W password (Read/Write) Read and write data, but cannot change the table structure Your web application during normal operation, e.g. WordPress, Joomla, your online shop
R/O password (Read Only) Read only Analytics and reporting tools, external dashboards, statistics scripts

Why separate passwords make sense

At first glance, it seems easier to use the main password everywhere. In practice, however, separating them is worth it for two reasons:

Security: If the password of your web application falls into the wrong hands, for example through a security vulnerability in the CMS you are using or a compromised server, is the damage is limited. With the R/W password, an attacker can manipulate data but cannot destroy the entire database structure. With the R/O password of a reporting tool, they cannot change any data at all.

Avoiding accidental mistakes: Even without an attack, separate passwords protect you from your own mistakes. A statistics script running with the R/O password cannot delete any data, even if it contains a programming error.

A typical setup

A common scenario for a WordPress website with an external analytics tool looks like this:

  • WordPress connects with the R/W password. It reads and writes posts, comments, and user data, but does not need to create new tables.
  • A Matomo or reporting dashboard on another server reads visitor statistics from the database using the R/O password.
  • For maintenance work, you occasionally log in to phpMyAdmin yourself using the main password, for example to install an update or import a backup.

Note: During a WordPress update that includes database migrations (new tables or changed columns), you temporarily need the main password in wp-config.php. Reset it to the R/W password after the update is complete.

Changing passwords

You can change the passwords at any time in konsoleH under MariaDB/MySQL using the edit icon next to your database. Keep in mind that after a change, you also need to update the connection details in your applications. Otherwise they will no longer be able to reach the database.

Manage your database(s)

In the overview, you can create a new database or modify, delete, back up, and access existing databases via phpMyAdmin.

If you wish to delete a database, konsoleH will require you to confirm that before finally deleting it. Be careful when you confirm it; you can not un-do the deletion.

Encrypted access

You can access your database in an encrypted manner using SSL. We can provide you with a ready-made certificate that you can use to carry out the encryption. Note: The speed of encrypted connections is slower.

The certificate is:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

You can save the certificate locally as a text file (for example, as "sqlca.pem"). Once you have done that, you can make an encrypted connection. Unfortunately, however, it is not possible for you to use your own client certificates.

Example commands for encrypted access to MariaDB/MySQL:

  • MariaDB/MySQL command line 
    mysql --ssl --ssl-ca sqlca.pem -h HOSTNAME ...
  • PHP (PDO) 
    $pdo = new PDO('mysql:host=HOSTNAME;dbname=DBNAME', 'USERNAME', 'PASSWORD', array(PDO::MYSQL_ATTR_SSL_CA=>'sqlca.pem'));
  • PHP (mysqli) 
    $db = mysqli_init();
$db->ssl_set(NULL, NULL, 'sqlca.pem', NULL, NULL);
$link = mysqli_real_connect ($db, 'HOSTNAME', 'USERNAME', 'PASSWORD','DBNAME', 3306, NULL, MYSQLI_CLIENT_SSL);
  • JAVA
    • For Java, first import the certificate into the keystore. Then you can establish the connection with:
    jdbc:mysql://[host][:port]/[database]?useSSL=true&requireSSL=true&trustCertificateKeyStorePassword=<secret>&trustCertificateKeyStoreUrl=file:/path/to/my/keystore

Change MySQL password

Click on the hosting in the product overview and under Services, select MariaDB/MySQL. Then click on the gear-icon. Overwrite the passwords and click on Save. Do this for all databases.

Important note: You may need to also change the new password in the configuration files of the installed MySQL software.

What is phpMyAdmin?

phpMyAdmin is a graphic database administration tool for MariaDB/MySQL. It is a good way to manage the database(s) without learning the SQL language.

Using the graphic interface, you can add, edit, and delete information easily.

For more information about phpMyAdmin, please visit the official website https://www.phpmyadmin.net/ .

For larger databases, we recommend using a query browser. Here are some examples of free query browsers: https://www.mysql.com/products/workbench/, https://www.heidisql.com/

Is a connection via ODBC possible?

Yes, it is possible to connect to databases via an ODBC driver.

Database Repair

It is very often possible to repair corrupt MySQL databases. Follow these steps on konsoleH:

  1. Go to ServicesMySQL.
  2. Select the database and click on phpMyAdmin.
  3. Click on Select All in the table overview.
  4. Click on Repair Tables Highlighted.
Table of Contents