Hi, I am a new user (hardly a month old) to mysql.
My configuration: P4 with Windows 2000 prof, apache, PHP4.3, Mysql 4.0.11-gamma, phpmyadmin 2.4.0. Now my problem is, a user with no privilege is able to run SQL command TRUNCATE <table> to empty any table! First I reported it to phpmyadmin team and after lengthy discussion, I was advised to report to you. Since it is a serious security hole, I would like to get rid of it at the earliest. If any fix is already available, please let me know. Thanks -rajaraman __________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
