I recently set up my WordPress blog and I changed the password of its mysql database to a 24 character randomly generated password. I have a few questions about the database:
- Is my database name visible?
- Does a hacker need both the database name and the password to crack it?
- How long would it take to crack a 24 char mysql password using 10 Nvidia 1080ti video cards?
I searched Security.SE but couldn’t find any specific questions about wordpress sql security. This wordpress.org page explains how databases are created but nothing specific about its visibility.