>>>>It seems like you are getting privileges systems mixed up. No, I understand and have extensively read the below docs & more. Going down to the filesystem level is a nasty work-around to the problem. I want to know if there is any way to set certain tables to have SELECT only privileges without setting table level privileges on all the tables in the database (because tables are being added and dropped all the time this would not be feasible).
Help anyone? Andrew -----Original Message----- From: Salada, Duncan [mailto:[EMAIL PROTECTED]] Sent: 12 February 2003 16:37 To: Andrew Braithwaite; [EMAIL PROTECTED] Subject: RE: mysql privs table level security It seems like you are getting privileges systems mixed up. The MySQL server has its own privileges system that is separate (sort of) from the filesystem privileges system. All queries within MySQL will be handled by the MySQL server privilege system. Within that system, you are able to control all sorts of SQL sctivities (selects,inserts,deletes,updates,etc.) based on usernames/passwords to the MySQL server. As far as file system privs, all actions while logged into the MySQL server will be performed on the underlying files as whatever user the MySQL server is running as (not the MySQL user login) which is often "mysql". For more info, check out these two parts of the manual: http://www.mysql.com/doc/en/Privilege_system.html http://www.mysql.com/doc/en/User_Account_Management.html Duncan ----------------------------------------------- Duncan Salada Titan Systems Corporation 301-925-3222 x375 -----Original Message----- From: Andrew Braithwaite [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 12, 2003 11:13 AM To: [EMAIL PROTECTED] Subject: RE: mysql privs table level security Any idea at all, anyone? Cheers, Andrew -----Original Message----- From: Andrew Braithwaite Sent: 11 February 2003 17:52 To: [EMAIL PROTECTED] Subject: mysql privs table level security Hi all, Can anyone help me please? I have a database with hundreds of tables and I want to lock down certain tables for select only. The order of presidence for mysql privs as far as I can tell is that if there are database level privileges, these override the table level privs. I don't want to have to issue a grant for each of the tables in the db - but only wish to specify which tables need to be read only. I could go into the datadir and chmod 440 the files in question, but this would deny write privs to all users wheras I would like certain users to have write access. Any ideas? Cheers, Andrew Sql,query --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
