It should also be made clear that MySQL users is different from System Users. MySQL root account is also different with the System Root Account.
You can restrict users to certain databases with the appropriate parameters on what the db user can and cannot do. mysql> user mysql; mysql> grant insert, select, update on testdb.* to user@localhost identified by 'hispassword'; mysql> flush privileges; this would only allow him to do selects, updates and inserts on the database testdb and all tables underlying it, but cannot delete, read from files etc. GRANT is in detail at http://www.mysql.com/documentation/mysql/bychapter/manual_MySQL_Database_Adm inistration.html#GRANT Thanks, Sherwin Ang Web Programmer / Systems Administrator Alchemy Solutions http://www.alchemy.com.ph Creative. Technology. Tridel Technologies, Inc. 7th Floor Hanston Building Emerald Ave., Ortigas Center Pasig City Tel: (632) 634-5141/ (632) 634-5140 Fax: (632) 634-5139 ----- Original Message ----- From: "Gerald R. Jensen" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, January 08, 2002 11:25 AM Subject: Re: mySQL security > Dear "- -": > > I would revoke all permissions for dummy, then create new permissions for > users on a database-by-database basis. If you look at the syntax for GRANT > in the manual, you can stipulate which databases a user would have access > to. > > A word of caution: don't use root. Create a user for yourself and give it > full permissions, then use it to administer teh database. > > Gerald Jensen > > ----- Original Message ----- > From: "- -" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Monday, January 07, 2002 9:13 PM > Subject: mySQL security > > > Hi all, > > I have set up mySQL database server on my web server running on RH Linux7.2. > There are 2 user accounts, root and dummy who can access to databases. I'm > wondering how to restrict the accesss to mysql (the db which stores user id, > password, etc...). Right now, both users can run select, delete, update... > statements on this database. How do I set the permissions so that only root > can view, modify, delete tables or data in this database? > > Thanks in advance, > kaz > > _________________________________________________________________ > Join the world's largest e-mail service with MSN Hotmail. > http://www.hotmail.com > > > --------------------------------------------------------------------- > Before posting, please check: > http://www.mysql.com/manual.php (the manual) > http://lists.mysql.com/ (the list archive) > > To request this thread, e-mail <[EMAIL PROTECTED]> > To unsubscribe, e-mail > <[EMAIL PROTECTED]> > Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php > > > > --------------------------------------------------------------------- > Before posting, please check: > http://www.mysql.com/manual.php (the manual) > http://lists.mysql.com/ (the list archive) > > To request this thread, e-mail <[EMAIL PROTECTED]> > To unsubscribe, e-mail <[EMAIL PROTECTED]> > Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php > --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php