Hello.
Could you give a test case? For example I've done these steps, and user u1 couldn't create tables in other databases. grant all privileges on `user\_data`.* to 'u1'@'localhost' identified by 'u1'; grant select on user2data.* to [EMAIL PROTECTED]; Then I've logged in as u1. use `user\_data`; create table a1(a int); create table user2data.user2data( a int); ERROR 1142 (42000): CREATE command denied to user 'u1'@'localhost' for table 'user2data' User u1 is able to create tables only in his database (user_data). >"Jeroen Bosch" <[EMAIL PROTECTED]> wrote: >We stumbled upon the following 'feature' of MySQL: > If, for example user 'x' has a database called 'user_data' he is able > to > create a table called user2data and so on without create privileges. > > It looks like the underscore is used as some kind of wildcard, now is > the >> >question: is this correct or is this something that should not be? -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.NET http://www.ensita.net/ __ ___ ___ ____ __ / |/ /_ __/ __/ __ \/ / Gleb Paharenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.NET <___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]