[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Re: MySql

Subject: Re: [cobalt-users] Re: MySql
From: Brent Sims <brent@xxxxxxxxxxx>
Date: Mon Jan 8 13:52:22 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Thu, 4 Jan 2001, Richard Kurth so wrote:

}  the run GRANT SELECT,INSERT,UPDATE,DELETE,CREATE,REFERENCES,DROP,INDEX,ALTER
}  ON userdatabase.* TO 'username'@'domain.com' IDENTIFIED BY 'password

	No insult intended or implied, keep on helping but this
is a very very - EXTREMELY bad idea. MySQL DROP priviliges are
server wide, that is, any user with DROP priviliges can DROP any
database on that server, including the database in which MySQL
privledges are stored. While not nearly as easily abused, good
MySQL Admins are very careful about who they grant GRANT, ALTER,
FILE, SHUTDOWN and PROCESS priviliges to as they too can easy and
will be used against you.

	This is all clearly explained in the "Privileges provided by
MySQL" section of the MySQL user manual. If you are going to run a
MySQL server that can be accessed by users my opinion is that you
really ought to at least think about reading the entire section
mentioned above very carefully, at least twice, before you even
think of putting that server on line.

Follow-Ups:
- Re[2]: [cobalt-users] Re: MySql
  - From: Richard Kurth
- Re: [cobalt-users] Re: MySql
  - From: Jens Kristian Søgaard

References:
- [cobalt-users] Re: MySql
  - From: Richard Kurth

Prev by Date: [cobalt-users] [raq4] User directories hosed by recent patch???
Next by Date: Re: [cobalt-users] cgi-wrapper error
Previous by thread: [cobalt-users] Re: MySql
Next by thread: Re[2]: [cobalt-users] Re: MySql

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index