I use have used the ELS script in setting up quite a few machines now as it offers such a quick and easy way of doing the simple configuration tasks at the beginning. On webservers i use the secure /tmp option which remounts /tmp (and other tmp directories) however once I have done this I have issues with mysql accessing the directory for its innodb access.

Is there a way to allow MySQL innodb access to the /tmp directory without undoing the securing. The errors i'm getting (when I try to get MySQL to access the /tmp directory) are:

mysql.log


messages:









I suppose my question boils down to can you set the mysql tmp directory (I couldn't find a config directive) or is there "trick" that I don't know

Any pointers would be great!

Ok, i found the tmpdir directive

Where would be the "best" place to put these tmp files if not /tmp? If I try to put it in other directories (/var/mysql_tmp for example) then there is still a problem creating the temporary file.

Should I create a separate partition in the future for mysql temporary file?

Did you have ELS change the MySQL config? If so, be sure that you comment out the skip-innodb line and restart MySQL. As far as /tmp files go with MySQL, it should work even with this security in-place as the changes only prevent binary files from being executed, not from access.

If you do change the tmpdir, I would change it to /var/lib/mysql/tmp. When you do that, you'll have to setup permissions, correctly, too.

Nope, but i got mysql to run with the skip-innodb directive in place.



Cool, I thought about this but wasn't sure because the databases are there but I tried this and it works fine - just guess you don't add a database with the name "tmp"

Thanks v much for the prompt response

That's just what I read after Googling a bit, so yeah, if you need a 'tmp' database, you're SOL until you change that.

And how did you get innodb with skip-innodb in the config? That sort of negates the whole point of the option, lol.

hehe, i meant I got mysql to run (i.e. with ISAM databases) rather that MySQL with InnoDB tables too - that would be wierd!

Gotcha, that makes more sense.

[gbock gbock]$ perror 13
OS error code 13: Permission denied
[gbock gbock]$


chown mysql: /var/mysql_tmp/

This would be safer than a 1777 dir and mysql should be the only thing using it.

I also just noticed your log entries from messages. You are running selinux and will need to add that directory to the security context for mysql.