Ramonymous · August 24, 2019 09:22 · Aug 24, 2019 · Aug 24, 2019 · Aug 12, 2014 · Aug 12, 2014
diff --git a/mysql_secure.sh b/mysql_secure.sh
@@ -54,7 +54,7 @@ fi
 #
 if [ $(dpkg-query -W -f='${Status}' expect 2>/dev/null | grep -c "ok installed") -eq 0 ]; then
     echo "Can't find expect. Trying install it..."
-    aptitude -y install expect
+    yum -y install expect
 
 fi
 

diff --git a/mysql_secure.sh b/mysql_secure.sh
@@ -97,7 +97,7 @@ echo "${SECURE_MYSQL}"
 
 if [ "${PURGE_EXPECT_WHEN_DONE}" -eq 1 ]; then
     # Uninstalling expect package
-    aptitude -y purge expect
+    yum -y remove expect
 fi
 
 exit 0
diff --git a/mysql_secure.sh b/mysql_secure.sh
@@ -1,16 +1,17 @@
 #!/bin/bash
 
 #
-# Automate mysql secure installation
-#
+# Automate mysql secure installation for debian-baed systems
+# 
 #  - You can set a password for root accounts.
 #  - You can remove root accounts that are accessible from outside the local host.
 #  - You can remove anonymous-user accounts.
 #  - You can remove the test database (which by default can be accessed by all users, even anonymous users), 
 #    and privileges that permit anyone to access databases with names that start with test_. 
 #  For details see documentation: http://dev.mysql.com/doc/refman/5.7/en/mysql-secure-installation.html
 #
-# @version 13.08.2014 00:41 +03:00
+# @version 13.08.2014 00:39 +03:00
+# Tested on Debian 7.6 (wheezy)
 #
 # Usage:
 #  Setup mysql root password:  ./mysql_secure.sh 'your_new_root_password'

diff --git a/mysql_secure.sh b/mysql_secure.sh
@@ -1,20 +1,78 @@
 #!/bin/bash
 
-aptitude -y install expect
+#
+# Automate mysql secure installation
+#
+#  - You can set a password for root accounts.
+#  - You can remove root accounts that are accessible from outside the local host.
+#  - You can remove anonymous-user accounts.
+#  - You can remove the test database (which by default can be accessed by all users, even anonymous users), 
+#    and privileges that permit anyone to access databases with names that start with test_. 
+#  For details see documentation: http://dev.mysql.com/doc/refman/5.7/en/mysql-secure-installation.html
+#
+# @version 13.08.2014 00:41 +03:00
+#
+# Usage:
+#  Setup mysql root password:  ./mysql_secure.sh 'your_new_root_password'
+#  Change mysql root password: ./mysql_secure.sh 'your_old_root_password' 'your_new_root_password'"
+#
 
-// Not required in actual script
-MYSQL_ROOT_PASSWORD=abcd1234
+# Delete package expect when script is done
+# 0 - No; 
+# 1 - Yes.
+PURGE_EXPECT_WHEN_DONE=0
+
+#
+# Check the bash shell script is being run by root
+#
+if [[ $EUID -ne 0 ]]; then
+   echo "This script must be run as root" 1>&2
+   exit 1
+fi
+
+#
+# Check input params
+#
+if [ -n "${1}" -a -z "${2}" ]; then
+    # Setup root password
+    CURRENT_MYSQL_PASSWORD=''
+    NEW_MYSQL_PASSWORD="${1}"
+elif [ -n "${1}" -a -n "${2}" ]; then
+    # Change existens root password
+    CURRENT_MYSQL_PASSWORD="${1}"
+    NEW_MYSQL_PASSWORD="${2}"
+else
+    echo "Usage:"
+    echo "  Setup mysql root password: ${0} 'your_new_root_password'"
+    echo "  Change mysql root password: ${0} 'your_old_root_password' 'your_new_root_password'"
+    exit 1
+fi
+
+#
+# Check is expect package installed
+#
+if [ $(dpkg-query -W -f='${Status}' expect 2>/dev/null | grep -c "ok installed") -eq 0 ]; then
+    echo "Can't find expect. Trying install it..."
+    aptitude -y install expect
+
+fi
 
 SECURE_MYSQL=$(expect -c "
 
-set timeout 10
+set timeout 3
 spawn mysql_secure_installation
 
 expect \"Enter current password for root (enter for none):\"
-send \"$MYSQL\r\"
+send \"$CURRENT_MYSQL_PASSWORD\r\"
 
-expect \"Change the root password?\"
-send \"n\r\"
+expect \"root password?\"
+send \"y\r\"
+
+expect \"New password:\"
+send \"$NEW_MYSQL_PASSWORD\r\"
+
+expect \"Re-enter new password:\"
+send \"$NEW_MYSQL_PASSWORD\r\"
 
 expect \"Remove anonymous users?\"
 send \"y\r\"
@@ -31,6 +89,14 @@ send \"y\r\"
 expect eof
 ")
 
-echo "$SECURE_MYSQL"
+#
+# Execution mysql_secure_installation
+#
+echo "${SECURE_MYSQL}"
+
+if [ "${PURGE_EXPECT_WHEN_DONE}" -eq 1 ]; then
+    # Uninstalling expect package
+    aptitude -y purge expect
+fi
 
-aptitude -y purge expect
+exit 0
diff --git a/mysql_secure.sh b/mysql_secure.sh
@@ -33,4 +33,4 @@ expect eof
 
 echo "$SECURE_MYSQL"
 
-aptitude purge expect
+aptitude -y purge expect
diff --git a/gistfile1.txt → mysql_secure.sh b/gistfile1.txt → mysql_secure.sh
diff --git a/gistfile1.txt b/gistfile1.txt
@@ -0,0 +1,36 @@
+#!/bin/bash
+
+aptitude -y install expect
+
+// Not required in actual script
+MYSQL_ROOT_PASSWORD=abcd1234
+
+SECURE_MYSQL=$(expect -c "
+
+set timeout 10
+spawn mysql_secure_installation
+
+expect \"Enter current password for root (enter for none):\"
+send \"$MYSQL\r\"
+
+expect \"Change the root password?\"
+send \"n\r\"
+
+expect \"Remove anonymous users?\"
+send \"y\r\"
+
+expect \"Disallow root login remotely?\"
+send \"y\r\"
+
+expect \"Remove test database and access to it?\"
+send \"y\r\"
+
+expect \"Reload privilege tables now?\"
+send \"y\r\"
+
+expect eof
+")
+
+echo "$SECURE_MYSQL"
+
+aptitude purge expect