dnswatchdog.iodocs
Issues

Port 3306: MySQL

Open MySQL port detected on a publicly accessible host.

Severity: Critical | Port: 3306

What is MySQL?

MySQL is one of the most popular open-source relational databases in the world. It powers everything from small websites to large-scale web applications. MySQL listens on port 3306 for client connections by default.

Why this is a problem

An exposed MySQL port allows anyone on the internet to attempt to connect to your database. Attackers use automated scanners to find open MySQL ports and try default credentials (like root with no password), brute-force weak passwords, or exploit known vulnerabilities. A compromised MySQL server can lead to complete data theft or destruction.

What you should do

  • Block port 3306 from the internet — databases should never be publicly accessible
  • Place MySQL on a private subnet with no public IP address
  • Applications should connect over private network interfaces
  • If remote access is needed, use an SSH tunnel or VPN
  • Ensure the root account is not accessible remotely and has a strong password
  • Remove any test databases and anonymous user accounts

Port 2375: Docker

Open Docker API port detected on a publicly accessible host.

Port 3389: RDP

Open Remote Desktop Protocol port detected on a publicly accessible host.

On this page

What is MySQL?Why this is a problemWhat you should do