[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Creating databases using phpMyAdmin

Subject: Re: [cobalt-users] Creating databases using phpMyAdmin
From: Nell Bolen <nell@xxxxxxxxxxxxxx>
Date: Mon Oct 1 05:57:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Marco Baurdoux wrote:

> le 1.10.2001 8:43, Daniel Treadwell à daniel@xxxxxxxxxxx a écrit :
>
> > one word; phpMyAdmin http://www.phpwizard.net/projects/phpMyAdmin/
> >
> > your users can create their own stuff without u having to give them full
> > shell access...
> >
> > HTH
>
> Hi Daniel,
> The problem if you use phpMyAdmin to create new mysql databases is that all
> your customer have the same username and password, so this means that one
> customer can view the content of another customer.
>
> Now, I don't believe that your customers will be really happy with this.
> With the solution I proposed every user has its own database, its own
> username and own password.
>
> so only the root user of the mysql database can view all the databases.
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users

Have set up an MySql server that seems to work. The privilege tables in mysql
allow domain customers to connect as "localhost" but only to their own
databases and tables. Have tried it out using different customers'
usernames/passwords, and when I do, I can view only the databases specific to a
certain username/password. A web interface to the mysql databases, too, will
allow me to work with only a specific database when using customers'
usernames/passwords. Is this what you refer to above?

Am new at this. Have read somewhat about the privilege system, but would
appreciate your views about the safety of how I've set this up. Only root can
create databases and has all privileges. Each database gets a
username/password. Users have only the first six privileges. Have also set up a
simple web interface for customers to use to manipulate the tables in their
databases. On the log in page, all databases are listed, but further progress
depends up which username/password the customer uses. This interface allows
only connection to one database, customer specific. Does this setup sound
secure to you? Thank you for any comments and pointers.

Regards, Nell Bolen
nell@xxxxxxxxxxxxxx

Follow-Ups:
- Re: [cobalt-users] Creating databases using phpMyAdmin
  - From: Marco Baurdoux

References:
- [cobalt-users] Creating databases using phpMyAdmin
  - From: Marco Baurdoux

Prev by Date: RE: [cobalt-users] RFC2317 DNS delegation
Next by Date: Re: [cobalt-users] OT: Cobalt Knowledgebase Redirecting?
Previous by thread: Re: [cobalt-users] Creating databases using phpMyAdmin
Next by thread: Re: [cobalt-users] Creating databases using phpMyAdmin

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index