[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] phpMyAdmin multi-user

Subject: Re: [cobalt-users] phpMyAdmin multi-user
From: "Per M Knutsen" <per.knutsen@xxxxxxxxxxxxxx>
Date: Tue Aug 28 21:06:03 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> I have done this, but wouldn't any user be able to install their own
> phpMyAdmin on their on virtual site and see all the databases? (even if
> they can't access them?).

At least anyone can see them if they log in on mysql via telnet/SSH.

I often experience users on my machine putting their MySQL passwords in
un-protected files in their public /www area. Unfortunate as it is, knowing
the names of databases on the box reduces the task of finding password to
typing grep known_db_name *

In short I, too, would like to limit user's ability to view names of
databases. Is there a way to prevent this at the level of MySQL?


Per M Knutsen
http://nethut.no/~pknutsen

References:
- [cobalt-users] phpMyAdmin multi-user
  - From: Jorge Otero

Prev by Date: Re: [cobalt-users] phpMyAdmin multi-user
Next by Date: RE: [cobalt-users] Raq4 Email for Virtual Sites
Previous by thread: Re: [cobalt-users] phpMyAdmin multi-user
Next by thread: Re: [cobalt-users] phpMyAdmin multi-user

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index