>From the command line a user would type SET password = PASSWORD('newpassword'); If you have an application this works as a straight executed command. I do agree with confirming old password before changing if using an application. This works for any connected user without granting anything extra.
Mike Hillyer -----Original Message----- From: Prabu Subroto [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 25, 2003 2:35 PM To: [EMAIL PROTECTED] Subject: Re: Allowing a user to change their password I suggest you to make a special application for this operation. With three-tier architecture for example and your application ask the current passord to make sure that they are the legal user before your sql query change their password through your application. --- "Shawn P. Garbett" <[EMAIL PROTECTED]> wrote: > How can one allow a user to change their mysql > password securily? > > If I do a grant update on the user table, then a > user could change anyone's > password. I just want a user to be able to change > their password. Is this > possible? > > Shawn > > -- > MySQL General Mailing List > For list archives: http://lists.mysql.com/mysql > To unsubscribe: > http://lists.mysql.com/[EMAIL PROTECTED] > __________________________________________________ Do you Yahoo!? Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop! http://platinum.yahoo.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]