i need to install a mysql server on my windows machine to run a local database. does anyone know if this thing poses a vulnerability?

Accepted Answer

"...XAMPP is not meant for production use but only for developers in a development environment. XAMPP is configured is to be as open as possible and to allow the web developer anything he/she wants. For development environments this is great but in a production environment it could be fatal. "

Here a list of missing security in XAMPP:

* The MySQL administrator (root) has no password.
* The MySQL daemon is accessible via network.
* phpMyAdmin is accessible via network.
* The XAMPP demopage is accessible via network.
* The default users of Mercury and FileZilla are known.

Read this for more: http://www.apachefriends.org/en/xampp-windows.html#1221

Written by Nick
This page was build to provide you fast access to the question and the direct accepted answer.
The content is written by members of the stackoverflow.com community.
It is licensed under cc-wiki