Default Security Measures Introduced in BioStar 2.4.1 (2017 Q2)
External access to Maria DB is blocked by default[root account only has localhost / 127.0.0.1 connection privilege]
This means you can only configure the Host as 127.0.0.1 or localhost on BioStar Setting if you use the default root account configuration
Only Administrator account for Maria DB is the 'root' account
However this setting is not applied automatically if you are upgrading BioStar 2 from another lower version and if you are using any BioStar 2 version lower than 2.4.1
Changing the Default Password
If you install BioStar 2 with the express install, a default administrator account will be created for the AC and TA database. Account information is as shown below:
You must know your root password to change the default administrator password of both databases.
The AC DB is Maria DB starting BioStar 2.3. In previous versions it was a SQLite DB.
Default Password before BioStar 2.4.1:
In new Maria DB express installation of BioStar 2.4.1 and above you will have to configure your root account password in the installation phase.
Follow the instructions below to change the password of the default accounts.
2.Install and run HeidiSQL.
3.Enter the information below on Settings:
5.Click Tools > User Manager.
6.Click on each default users (biostar2_ac_user & biostartnauser) and change the password.
There are 2 accounts for each users to have different passwords based on connection type. Below are what the Hosttype stands for:
Blocking Remote Access (BioStar 2.4.1 and below) - Optional
Maria DB can be accessed via the IP of the hosting PC by default. You may want to limit the access of the database to be only on the hosting PC for security reasons. In that case you can follow the instructions below:
1.Go to the path below in Windows explorer:
C:\Program Files\BioStar 2(x64)\ta\mariadb-10.1.10-winx64
2.Right click and edit my.cnf with a text editor such as Notepad.
3.Copy and paste the text below into the file:
4.Save the file.
Now you can only access the Maria database at the hosted PC.