Re: permissions in information_schema

[Darvin Denmian]

Thanks Rolando for your help.

But there is one thing that is very stranger

When I use Mysql Administrator to configure the permissions that I
want for the user "MySqlMonitor" , everything works fine,
as you can see in the image bellow:

http://img801.imageshack.us/img801/6225/capturadetelabe.png

Is there some explanation for this?

I'm using "mysql-server-5.0.77-4.el5_5.3" in a CentOS Server.

Thanks !!!

On Mon, Aug 30, 2010 at 5:27 PM, Rolando Edwards
 wrote:
> Information_schema is a read-only memory database.
>
> When you create'MySqlMonitor'@'localhost', you will still see the 
> information_schema.
>
> However, the information_schema will only contain table info 
> 'MySqlMonitor'@'localhost' can access.
>
> Information_schema behaves more like a restricted view of actual databases 
> and tables (a view of only your stuff)
>
> Makes sense ???
>
> Rolando A. Edwards
> MySQL DBA (CMDBA)
>
> 155 Avenue of the Americas, Fifth Floor
> New York, NY 10013
> 212-625-5307 (Work)
> 201-660-3221 (Cell)
> AIM & Skype : RolandoLogicWorx
> redwa...@logicworks.net
> http://www.linkedin.com/in/rolandoedwards
>
>
> -Original Message-
> From: Darvin Denmian [mailto:darvin.denm...@gmail.com]
> Sent: Monday, August 30, 2010 4:10 PM
> To: mysql@lists.mysql.com
> Subject: permissions in information_schema
>
> Can somebody tell me why the last command bellow doesn't works?
>
> mysql> GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY 'senha'
> WITH GRANT OPTION;
> Query OK, 0 rows affected (0.02 sec)
>
> mysql> FLUSH PRIVILEGES;
> Query OK, 0 rows affected (0.00 sec)
>
> mysql> GRANT SUPER,REPLICATION CLIENT,SELECT ON information_schema.*
> TO 'MySqlMonitor'@'localhost' IDENTIFIED BY 'senha';
> ERROR 1044 (42000): Access denied for user 'root'@'localhost' to
> database 'information_schema'
> mysql>
>
> Thanks, and sorry if this is a newbie doubt!
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:    http://lists.mysql.com/mysql?unsub=redwa...@logicworks.net
>
>

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org

RE: permissions in information_schema

[Rolando Edwards]

Information_schema is a read-only memory database.

When you create'MySqlMonitor'@'localhost', you will still see the 
information_schema.

However, the information_schema will only contain table info 
'MySqlMonitor'@'localhost' can access.

Information_schema behaves more like a restricted view of actual databases and 
tables (a view of only your stuff)

Makes sense ???

Rolando A. Edwards
MySQL DBA (CMDBA)

155 Avenue of the Americas, Fifth Floor
New York, NY 10013
212-625-5307 (Work)
201-660-3221 (Cell)
AIM & Skype : RolandoLogicWorx
redwa...@logicworks.net
http://www.linkedin.com/in/rolandoedwards


-Original Message-
From: Darvin Denmian [mailto:darvin.denm...@gmail.com] 
Sent: Monday, August 30, 2010 4:10 PM
To: mysql@lists.mysql.com
Subject: permissions in information_schema

Can somebody tell me why the last command bellow doesn't works?

mysql> GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY 'senha'
WITH GRANT OPTION;
Query OK, 0 rows affected (0.02 sec)

mysql> FLUSH PRIVILEGES;
Query OK, 0 rows affected (0.00 sec)

mysql> GRANT SUPER,REPLICATION CLIENT,SELECT ON information_schema.*
TO 'MySqlMonitor'@'localhost' IDENTIFIED BY 'senha';
ERROR 1044 (42000): Access denied for user 'root'@'localhost' to
database 'information_schema'
mysql>

Thanks, and sorry if this is a newbie doubt!

-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/mysql?unsub=redwa...@logicworks.net


--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org

Re: Permissions and Into Outfile

[Tong Anh Quan]

Hi all,

>From the manual:

*Any file created by INTO OUTFILE or INTO DUMPFILE is writable by all users
on the server host. The reason for this is that the MySQL server cannot
create a file that is owned by anyone other than the user under whose
account it is running. (You should never run
mysqldas
root for this and other reasons.) The file thus must be world-writable so
that you can manipulate its contents.
*
but the output file has only permission is 660:

*-rw-rw 1 mysql mysql3387 Jul  9 12:14 1022_clickAll.out
-rw-rw 1 mysql mysql   0 Jul  9 13:51 1022xxx_clickAll.out
-rw-rw 1 mysql mysql   13789 Jul  8 18:22 103_click.out
-rw-rw 1 mysql mysql5150 Jul  8 18:22 104_click.out
-rw-rw 1 mysql mysql7458 Jul  8 18:22 105_click.out
-rw-rw 1 mysql mysql   432193215 Jul  9 00:57 2010-07-08_.out
-rw-rw 1 mysql mysql  1955472228 Jul  9 00:51 2010-07-08.out
*
therefore, client (EMS MySQL Manager) got following error:

*The file '/vnfs/share129/mysqldata/102_viewAll.out' must be in the database
directory or be readable by all*

mysql user has writable permission to current directory:

*# ls -ld .
drwxr-xr-x 2 mysql mysql 4096 Jul  9 15:11 .
*
How can I make the output file readable by all?

Re: Permissions

[Moon's Father]

I know it.Thanks.
I'm sorry that I had a mistake to what you said.

On Thu, Oct 23, 2008 at 2:32 AM, Ian Christian <[EMAIL PROTECTED]> wrote:

> 2008/10/21 Moon's Father <[EMAIL PROTECTED]>:
> > Could you please give me an idea of how to manage the privileges inside
> > mysql?
>
> http://www.google.co.uk/search?q=mysql+grant
>
> first hit :)
>



-- 
I'm a MySQL DBA in china.
More about me just visit here:
http://yueliangdao0608.cublog.cn

Re: Permissions

[Ian Christian]

2008/10/21 Moon's Father <[EMAIL PROTECTED]>:
> Could you please give me an idea of how to manage the privileges inside
> mysql?

http://www.google.co.uk/search?q=mysql+grant

first hit :)

-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions

[Moon's Father]

Could you please give me an idea of how to manage the privileges inside
mysql?
Thank you very much.

On Wed, Oct 15, 2008 at 5:01 AM, Rob Wultsch <[EMAIL PROTECTED]> wrote:

> On Tue, Oct 14, 2008 at 1:49 PM, Grant Peel <[EMAIL PROTECTED]> wrote:
> >
> > Hi all,
> >
> > I run a shared Apache, Perl, PHP, Mysql, on FreeBSD environment.
> >
> > Here is a question:
> >
> > IF I have a user, that has no permissions, but with a decent password,
> (in the mysql 'Users' table),
> > AND that user only has access to his/her database through the local host
> (i.e. perl or PHP scripts),
> > IS it safe to grant 'All' privs to that user in the database grants
> table?
> >
> > -Grant
>
> GRANT ALL PRIVILEGES is a bad habit.
>
> http://ronaldbradford.com/blog/why-you-do-not-use-grant-all-on-2008-09-23/
>
> --
> Rob Wultsch
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:
> http://lists.mysql.com/[EMAIL PROTECTED]
>
>


-- 
I'm a MySQL DBA in china.
More about me just visit here:
http://yueliangdao0608.cublog.cn

Re: Permissions

[Rob Wultsch]

On Tue, Oct 14, 2008 at 1:49 PM, Grant Peel <[EMAIL PROTECTED]> wrote:
>
> Hi all,
>
> I run a shared Apache, Perl, PHP, Mysql, on FreeBSD environment.
>
> Here is a question:
>
> IF I have a user, that has no permissions, but with a decent password, (in 
> the mysql 'Users' table),
> AND that user only has access to his/her database through the local host 
> (i.e. perl or PHP scripts),
> IS it safe to grant 'All' privs to that user in the database grants table?
>
> -Grant

GRANT ALL PRIVILEGES is a bad habit.

http://ronaldbradford.com/blog/why-you-do-not-use-grant-all-on-2008-09-23/

--
Rob Wultsch

-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: permissions on mysql db

[Ananda Kumar]

Thank u krishna.

On 7/3/07, krishna chandra prajapati <[EMAIL PROTECTED]> wrote:


Hi,
Yes, it is possible. the command i have given in my previous email will
make u to connect from mysql database server. The command below will make
you to connect from the client computer
The command is " grant all privileges on *.* to 'user1'@'192.169.6.%'
identified by password"

The command below will make you to connect from the mysql database server
The command is " grant all privileges on *.* to 'user1'@'localhost'
identified by password"

By giving this command the new privileges will not overide the old
privileges.

Regards,
Krishna



On 7/3/07, Ananda Kumar < [EMAIL PROTECTED]> wrote:
>
> Hi Krishna,
> If i execute a new grant statement, then the new previlage will over
> ride the old previlage, if this happens, then i will not be able to connect
> from other client machines. I want to connect from client also from the
> local host.
> Is this possible.
>
> regards
> anandkl
>
>
>  On 7/3/07, krishna chandra prajapati <[EMAIL PROTECTED] > wrote:
> >
> > Hi Everybody,
> >
> > The user which has been created with all previleges on all db, will
> > only work from the client machine only. If you want to access from the mysql
> > database server you have to create a user "grant all privileges on *.* to
> > '%'@'localhost' identified by password". I hope this should work.
> >
> > Regards,
> > Krishna
> >
> > On 6/28/07, Ananda Kumar <[EMAIL PROTECTED]> wrote:
> > >
> > > Hi All,
> > > I have created a user and grant all previlages on all db and the
> > > user can
> > > connect from any machine with in the same doiman.
> > >
> > > Now, when i login from a mysql client machine, i am able to see all
> > > the
> > > databases, but when i login directly from the mysql database server,
> > >
> > > I am able to see only the information_schema and test database.
> > >
> > > Should i grant any more previlages for the user to see all the
> > > database ,
> > > when connected directly from the mysql database server.
> > >
> > > regards
> > > anandkl
> > >
> >
> >
>

Re: permissions on mysql db

[krishna chandra prajapati]

Hi,
Yes, it is possible. the command i have given in my previous email will make
u to connect from mysql database server. The command below will make you to
connect from the client computer
The command is " grant all privileges on *.* to 'user1'@'192.169.6.%'
identified by password"

The command below will make you to connect from the mysql database server
The command is " grant all privileges on *.* to 'user1'@'localhost'
identified by password"

By giving this command the new privileges will not overide the old
privileges.

Regards,
Krishna



On 7/3/07, Ananda Kumar <[EMAIL PROTECTED]> wrote:


Hi Krishna,
If i execute a new grant statement, then the new previlage will over ride
the old previlage, if this happens, then i will not be able to connect from
other client machines. I want to connect from client also from the local
host.
Is this possible.

regards
anandkl


On 7/3/07, krishna chandra prajapati <[EMAIL PROTECTED]> wrote:
>
> Hi Everybody,
>
> The user which has been created with all previleges on all db, will only
> work from the client machine only. If you want to access from the mysql
> database server you have to create a user "grant all privileges on *.* to
> '%'@'localhost' identified by password". I hope this should work.
>
> Regards,
> Krishna
>
> On 6/28/07, Ananda Kumar <[EMAIL PROTECTED]> wrote:
> >
> > Hi All,
> > I have created a user and grant all previlages on all db and the user
> > can
> > connect from any machine with in the same doiman.
> >
> > Now, when i login from a mysql client machine, i am able to see all
> > the
> > databases, but when i login directly from the mysql database server,
> > I am able to see only the information_schema and test database.
> >
> > Should i grant any more previlages for the user to see all the
> > database ,
> > when connected directly from the mysql database server.
> >
> > regards
> > anandkl
> >
>
>

Re: permissions on mysql db

[Ananda Kumar]

Hi Krishna,
If i execute a new grant statement, then the new previlage will over ride
the old previlage, if this happens, then i will not be able to connect from
other client machines. I want to connect from client also from the local
host.
Is this possible.

regards
anandkl


On 7/3/07, krishna chandra prajapati <[EMAIL PROTECTED]> wrote:


Hi Everybody,

The user which has been created with all previleges on all db, will only
work from the client machine only. If you want to access from the mysql
database server you have to create a user "grant all privileges on *.* to
'%'@'localhost' identified by password". I hope this should work.

Regards,
Krishna

On 6/28/07, Ananda Kumar <[EMAIL PROTECTED]> wrote:
>
> Hi All,
> I have created a user and grant all previlages on all db and the user
> can
> connect from any machine with in the same doiman.
>
> Now, when i login from a mysql client machine, i am able to see all the
> databases, but when i login directly from the mysql database server,
> I am able to see only the information_schema and test database.
>
> Should i grant any more previlages for the user to see all the database
> ,
> when connected directly from the mysql database server.
>
> regards
> anandkl
>

Re: permissions on mysql db

[krishna chandra prajapati]

Hi Everybody,

The user which has been created with all previleges on all db, will only
work from the client machine only. If you want to access from the mysql
database server you have to create a user "grant all privileges on *.* to
'%'@'localhost' identified by password". I hope this should work.

Regards,
Krishna

On 6/28/07, Ananda Kumar <[EMAIL PROTECTED]> wrote:


Hi All,
I have created a user and grant all previlages on all db and the user can
connect from any machine with in the same doiman.

Now, when i login from a mysql client machine, i am able to see all the
databases, but when i login directly from the mysql database server,
I am able to see only the information_schema and test database.

Should i grant any more previlages for the user to see all the database ,
when connected directly from the mysql database server.

regards
anandkl

Re: permissions on mysql db

[Ananda Kumar]

you mean at os

On 6/28/07, Rolando Edwards (DBA) <[EMAIL PROTECTED]> wrote:


check your Linux/Unix user privileges

*Ananda Kumar <[EMAIL PROTECTED]>* wrote:

Hi All,
I have created a user and grant all previlages on all db and the user can
connect from any machine with in the same doiman.

Now, when i login from a mysql client machine, i am able to see all the
databases, but when i login directly from the mysql database server,
I am able to see only the information_schema and test database.

Should i grant any more previlages for the user to see all the database ,
when connected directly from the mysql database server.

regards
anandkl


 --
Need a vacation? Get great deals to amazing places
on
Yahoo! Travel.

RE: Permissions and Into Outfile

[John Kebbel]

Thank you. It's working now.


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Permissions and Into Outfile

[Mogens Melander]

Ok, on my linux (slackware 10) /var/www is owner by root.root with
permissions rwxr-xr-x (755). Say you want mysql to put your data
in a subdirectory under /var/www named data.

As root, do:

mkdir /var/www/data
chgrp mysql /var/www/data
chmod 775 /var/www/data

Now mysql has write permissions to /var/www/data

If you want a f.ex. PHP script to manipulate/change/delete
files generated by mysql, your webserver need r/w permissions
as well. I'm using apache2, so the daemon user need access.

chown daemon.mysql /var/www/data
or
chown mysql.daemon /var/www/data

That's it.

On Sat, April 28, 2007 04:04, John Kebbel wrote:
> I experimented with a local /var/www folder. I assumed setting 2, 6, or
> 7 for the Other value would give mysql write privileges, but mysql would
> not settle for anything less than a 7 in that last slot. What was really
> curious to me was that the User and Group settings were inconsequential.
> I even set the folder for 007 and mysql could write to the folder. But
> as soon as I tried making that Other setting anything less than 7, mysql
> generated an error message.
>
> I've been using Linux for years, but more as a hobby than profession
> (though I do maintain an internal Mac OS X web server at my school). I
> am unfamiliar with the syntax you were using with the username in front
> of :mysql. I didn't know of any way other than chmod nnn  to change
> permissions for UGO (user,group,other). Could you post one or two sample
> command line statements that illustrate this syntax in action. I did a
> brief web search, but it only turned up the stuff I was familiar with.
>
> Thanks to everyone who helped with this issue.
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
>
>
> --
> This message has been scanned for viruses and
> dangerous content by OpenProtect(http://www.openprotect.com), and is
> believed to be clean.
>


-- 
Later

Mogens Melander
+45 40 85 71 38
+66 870 133 224



-- 
This message has been scanned for viruses and
dangerous content by OpenProtect(http://www.openprotect.com), and is
believed to be clean.


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Permissions and Into Outfile

[John Kebbel]

I experimented with a local /var/www folder. I assumed setting 2, 6, or
7 for the Other value would give mysql write privileges, but mysql would
not settle for anything less than a 7 in that last slot. What was really
curious to me was that the User and Group settings were inconsequential.
I even set the folder for 007 and mysql could write to the folder. But
as soon as I tried making that Other setting anything less than 7, mysql
generated an error message.

I've been using Linux for years, but more as a hobby than profession
(though I do maintain an internal Mac OS X web server at my school). I
am unfamiliar with the syntax you were using with the username in front
of :mysql. I didn't know of any way other than chmod nnn  to change
permissions for UGO (user,group,other). Could you post one or two sample
command line statements that illustrate this syntax in action. I did a
brief web search, but it only turned up the stuff I was familiar with.

Thanks to everyone who helped with this issue.


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Permissions and Into Outfile

[Mogens Melander]

Another variant would be, to create a directory under your
www area, and give it :mysql 775 permissions, or
maybe :mysql 775 permissions, depending
on what you want to do with the csv file.

On Fri, April 27, 2007 16:41, Kebbel, John wrote:
> cat /etc/passwd on my Macintosh 10.3 at work (I'm using Linux at home)
> shows me this for mysql ...
>
> mysql:*:74:74:MySQL Server:/var/empty:/usr/bin/false
> The home directory for mysql is /var/empty, which does exist. Should I
> write ~into  file~ output to this folder or should I change the mysql home
> directory to some other folder?
>
>> --
>> From:Gerald L. Clark
>> Sent:Friday, April 27, 2007 10:09 AM
>> To:  Kebbel, John
>> Cc:  mysql@lists.mysql.com
>> Subject: Re: Permissions and Into Outfile
>>
>> Kebbel, John wrote:
>> >I was trying to write the output of a select statement to a
>> tab-delimited text file. I  could not write the file to a folder
>> inside /var/www or to my home file because of permission problems.
>> After a moment's reflection, I realized /tmp had stuff written to it
>> all the time, so its permissions must be wide open. I tried writing
>> the file to /tmp and it worked fine. Since you cannot write to an
>> existing file, you cannot create the file in advance and set its
>> permissions. What is the trick to getting the file to write
>> successfully anywhere you want it to be written?
>> >
>> >This is the query I was using...
>> >
>> > mysql> select sched_students.id, firstName, lastName, grade, race,
>> gender, dob, school, phone, program, hsMath, hsEnglish, hsScience,
>> major, 9YBand, 9YChorus, 9YGifted, 9YTV, 9YROTC, 9YSpanishI,
>> 9YSpanish2, 9YFrenchI, 9SAerobics, 9SArt, 9SBasketball, 9SDrama,
>> 9SDriverEd1, 9SDriverEd2, 9SRecreation, 9STeamSports1, 9STeamSports2,
>> 9SWeights
>> >into outfile '/tmp/srhs9.txt'
>> >
>> > from sched_students, SCHED_COURSES where (sched_students.id =
>> SCHED_COURSES.id) and (grade = 8) order by lastname, firstname;
>> >
>> The user 'mysql' must have write permission in the target directory.
>>
>> --
>> Gerald L. Clark
>> Supplier Systems Corporation
>>
>>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
>
>
> --
> This message has been scanned for viruses and
> dangerous content by OpenProtect(http://www.openprotect.com), and is
> believed to be clean.
>
>


-- 
Later

Mogens Melander
+45 40 85 71 38
+66 870 133 224



-- 
This message has been scanned for viruses and
dangerous content by OpenProtect(http://www.openprotect.com), and is
believed to be clean.


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions and Into Outfile

[Gerald L. Clark]

Kebbel, John wrote:

cat /etc/passwd on my Macintosh 10.3 at work (I'm using Linux at home) shows me 
this for mysql ...

mysql:*:74:74:MySQL Server:/var/empty:/usr/bin/false
The home directory for mysql is /var/empty, which does exist. Should I write 
~into  file~ output to this folder or should I change the mysql home directory 
to some other folder?




Neither.
Just make sure that mysql has permission to write in the directory you 
want to contain the output file.



--
Gerald L. Clark
Supplier Systems Corporation

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Permissions and Into Outfile

[Kebbel, John]

cat /etc/passwd on my Macintosh 10.3 at work (I'm using Linux at home) shows me 
this for mysql ...

mysql:*:74:74:MySQL Server:/var/empty:/usr/bin/false
The home directory for mysql is /var/empty, which does exist. Should I write 
~into  file~ output to this folder or should I change the mysql home directory 
to some other folder?

> --
> From: Gerald L. Clark
> Sent: Friday, April 27, 2007 10:09 AM
> To:   Kebbel, John
> Cc:   mysql@lists.mysql.com
> Subject:  Re: Permissions and Into Outfile
> 
> Kebbel, John wrote:
> > I was trying to write the output of a select statement to a 
> > tab-delimited text file. I  could not write the file to a folder inside 
> > /var/www or to my home file because of permission problems. After a 
> > moment's reflection, I realized /tmp had stuff written to it all the time, 
> > so its permissions must be wide open. I tried writing the file to /tmp and 
> > it worked fine. Since you cannot write to an existing file, you cannot 
> > create the file in advance and set its permissions. What is the trick to 
> > getting the file to write successfully anywhere you want it to be written? 
> > 
> > This is the query I was using...
> > 
> > mysql> select sched_students.id, firstName, lastName, grade, race, gender, 
> > dob, school, phone, program, hsMath, hsEnglish, hsScience, major, 9YBand, 
> > 9YChorus, 9YGifted, 9YTV, 9YROTC, 9YSpanishI, 9YSpanish2, 9YFrenchI, 
> > 9SAerobics, 9SArt, 9SBasketball, 9SDrama, 9SDriverEd1, 9SDriverEd2, 
> > 9SRecreation, 9STeamSports1, 9STeamSports2, 9SWeights
> > into outfile '/tmp/srhs9.txt' 
> > 
> > from sched_students, SCHED_COURSES where (sched_students.id = 
> > SCHED_COURSES.id) and (grade = 8) order by lastname, firstname;
> > 
> The user 'mysql' must have write permission in the target directory.
> 
> -- 
> Gerald L. Clark
> Supplier Systems Corporation
> 
> 

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions and Into Outfile

[Gerald L. Clark]

Kebbel, John wrote:
	I was trying to write the output of a select statement to a tab-delimited text file. I  could not write the file to a folder inside /var/www or to my home file because of permission problems. After a moment's reflection, I realized /tmp had stuff written to it all the time, so its permissions must be wide open. I tried writing the file to /tmp and it worked fine. Since you cannot write to an existing file, you cannot create the file in advance and set its permissions. What is the trick to getting the file to write successfully anywhere you want it to be written? 
	

This is the query I was using...

mysql> select sched_students.id, firstName, lastName, grade, race, gender, dob, 
school, phone, program, hsMath, hsEnglish, hsScience, major, 9YBand, 9YChorus, 
9YGifted, 9YTV, 9YROTC, 9YSpanishI, 9YSpanish2, 9YFrenchI, 9SAerobics, 9SArt, 
9SBasketball, 9SDrama, 9SDriverEd1, 9SDriverEd2, 9SRecreation, 9STeamSports1, 
9STeamSports2, 9SWeights
			into outfile '/tmp/srhs9.txt' 


from sched_students, SCHED_COURSES where (sched_students.id = SCHED_COURSES.id) 
and (grade = 8) order by lastname, firstname;


The user 'mysql' must have write permission in the target directory.

--
Gerald L. Clark
Supplier Systems Corporation

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions Weirdness

[Barry]

Chris White schrieb:
Normally I try to be as descriptive as possible with subject lines but.. not 
quite sure what else to call it.


So basically, I was given ALL access by our sysadmin to a particular database.  
Now, somehow I was able to create a database and use it!  It's my 
understanding that there is nothing grantable with all that would allow this 
(correct me if I'm wrong).  

Then to make it even better, whenever I access/run whatever on the database, 
permissions get totally whack and nothing can login anymore.  I'd love to 
google this but am not quite sure where to even start.  Thanks ahead of time 
for any ideas.


mysql 5.0.22-standard

There is a difference on User GRANTS and Table GRANTS.

Mixed this up probably?

--
Smileys rule (cX.x)C --o(^_^o)
Dance for me! ^(^_^)o (o^_^)o o(^_^)^ o(^_^o)

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions block database creation

[Косов Евгений]

User ''@'localhost' just hasn't enough privileges to create databases.

http://dev.mysql.com/doc/refman/5.0/en/privilege-system.html


Doug Pinkerton wrote:
I'm a total newbie working through the tutorial in DuBois's _MySQL_. 
I've got MySQL running on my PowerBook. In Terminal, I can use the mysql 
client to get responses to things like SELECT NOW(). But the command 
CREATE DATABASE sampdb; results in the following error.


ERROR 1044 (42000): Access denied for user ''@'localhost' to database 
'sampdb'

mysql>

I am unable to determine its location, which causes me to suspect that 
it is in the portion of the system not accessible from the Finder. Can 
anyone offer a suggestion?


Mac OS 10.4.5

Thanks,
dp



--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Permissions block database creation

[Marciano [Intercol]]

You need to set GRANTs to create on the host.

http://dev.mysql.com/doc/refman/5.0/en/grant.html


-Original Message-
From: Doug Pinkerton [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, March 14, 2006 1:26 PM
To: mysql@lists.mysql.com
Subject: Permissions block database creation

I'm a total newbie working through the tutorial in DuBois's _MySQL_.  
I've got MySQL running on my PowerBook. In Terminal, I can use the  
mysql client to get responses to things like SELECT NOW(). But the  
command CREATE DATABASE sampdb; results in the following error.

ERROR 1044 (42000): Access denied for user ''@'localhost' to database  
'sampdb'
mysql>

I am unable to determine its location, which causes me to suspect  
that it is in the portion of the system not accessible from the  
Finder. Can anyone offer a suggestion?

Mac OS 10.4.5

Thanks,
dp


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:
http://lists.mysql.com/[EMAIL PROTECTED]



-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions

[Walter Johnson]

CodeHeads wrote:

On Thu, 2006-02-23 at 21:46 -0600, Walter Johnson wrote:
  

#chown mysql:mysql /var/mysql-data
#chmod 770 /var/mysql-data 



Try this, assuming the files are in there for the database.

$chown -R mysql:mysql /var/mysql-data/*
$chmod -R 770 /var/mysql-data/*

Hope that helps. 
  

CodeHeads,

Thanks for the suggestion.  But, I am still denied access to 
/var/mysql-data 
and/usr/local/mysql-standard-5.0.18-osx10.4-powerpc/data.  I get 
'Permission Denied' when I try to change to either directory.  The owner 
of both is 'mysql'.  For /var/mysql-data with PathFinder under Contents, 
there is a faint '9' in parentheses, but I cannot see the databases (or 
tables and views).


thanks
-walter

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions

[CodeHeads]

On Thu, 2006-02-23 at 21:46 -0600, Walter Johnson wrote:
> >> #chown mysql:mysql /var/mysql-data
> >> #chmod 770 /var/mysql-data 

Try this, assuming the files are in there for the database.

$chown -R mysql:mysql /var/mysql-data/*
$chmod -R 770 /var/mysql-data/*

Hope that helps. 
-- 
Best regards,
~WILL~
Key: http://code-heads.com/keys/ch1.asc 
Key: http://code-heads.com/keys/ch2.asc 
Linux Commands: http://code-heads.com/commands 
Linux Registered User: 406084 (http://counter.li.org/)


signature.asc
Description: This is a digitally signed message part

Re: Permissions

[Walter Johnson]

Dan Trainor wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Walter Johnson wrote:
  

This is probably a simple question.  I installed MySQL about a month ago
on Mac OS X and I am new to this.  During the installation (as root) I
created a directory /var/mysql-data.  Then, following the installation
instructions:

#chown mysql:mysql /var/mysql-data
#chmod 770 /var/mysql-data

The problem is that I am denied access to all of the databases I have
created - permission denied except when I connect to the server.  When I
look in PathFinder, the owner is listed as mysql.  NetInfo tells me that
I have such a user, that it is the MySQL server.  If I gave mysql a
password, I do not remember it.  I did set up a mysql root with
password, and using Navicat I have created another user.

Should I not see my databases in /var/mysql-data either in the terminal
or the Finder?


thanks
-walter




Hi, Walter -

What's the exact error there?  We can't tell if you're talking about
file permissions, or actual database permissions.

Thanks
- -dant
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFD/jq2dJpmX+LLzdoRAovMAJoCkwx3E2/yVLrQ3xw7RT4iXkxwHwCeJIbn
8cXh8IEGpNjnXUGLYBepzXw=
=MEyX
-END PGP SIGNATURE-

  

   File permissions.


thanks
-walter

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions

[Dan Trainor]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Walter Johnson wrote:
> This is probably a simple question.  I installed MySQL about a month ago
> on Mac OS X and I am new to this.  During the installation (as root) I
> created a directory /var/mysql-data.  Then, following the installation
> instructions:
> 
> #chown mysql:mysql /var/mysql-data
> #chmod 770 /var/mysql-data
> 
> The problem is that I am denied access to all of the databases I have
> created - permission denied except when I connect to the server.  When I
> look in PathFinder, the owner is listed as mysql.  NetInfo tells me that
> I have such a user, that it is the MySQL server.  If I gave mysql a
> password, I do not remember it.  I did set up a mysql root with
> password, and using Navicat I have created another user.
> 
> Should I not see my databases in /var/mysql-data either in the terminal
> or the Finder?
> 
> 
> thanks
> -walter
> 

Hi, Walter -

What's the exact error there?  We can't tell if you're talking about
file permissions, or actual database permissions.

Thanks
- -dant
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFD/jq2dJpmX+LLzdoRAovMAJoCkwx3E2/yVLrQ3xw7RT4iXkxwHwCeJIbn
8cXh8IEGpNjnXUGLYBepzXw=
=MEyX
-END PGP SIGNATURE-

-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions for /var/run/mysqld

[Norman Walsh]

/ "sheeri kritzer" <[EMAIL PROTECTED]> was heard to say:
| That's odd.  My mysql.sock is chmod 777, which happened automatically.

Yes, the mysql.sock file is 777. But the directory that contains it
/var/run/mysqld is 770 on boot.

| Check the startup script.  Is it calling mysqld_safe?  Are you using
| the regular startup script that came with mysql, or have you mucked
| with it?

I didn't muck with it. I don't know if Ubuntu did.

| Make sure when you chmod that the file is still a socket.  Shouldn't
| be a problem.

As I said, it isn't the socket that I have to change, it's the
directory.

>
| I don't really have much to add.
>
| a quick google search on "mysql.sock permissions" shows this bug:
>
| http://bugs.mysql.com/bug.php?id=11380
>
| did you also upgrade mysql when you did the OS upgrade ? If so, backup
| your stuff and run mysql_install_db.  That's the only suggestion I
| have, other than doing a google search as I did and look at more than
| the first 2 results (which was what I did to find that bug).

I looked through a whole bunch of them before subscribing to this list :-)

However, your note got me to looking at /usr/bin/mysqld_safe and it
would seem to me that either of the following changes would fix the
problem:

1. Change umask 007 to umask 002 at the top of the script or

2. Add "chmod 775 $mysql_unix_port_dir" after creating and chowning it.

I opted for the latter locally. But I'm not sure why others don't have
this problem. Are either of those changes local to Ubuntu?

Be seeing you,
  norm

-- 
Norman Walsh <[EMAIL PROTECTED]> | Everything should be made as simple as
http://nwalsh.com/| possible, but no simpler.


pgpLe4NRbwA1u.pgp
Description: PGP signature

Re: Permissions for /var/run/mysqld

[sheeri kritzer]

That's odd.  My mysql.sock is chmod 777, which happened automatically.

Check the startup script.  Is it calling mysqld_safe?  Are you using
the regular startup script that came with mysql, or have you mucked
with it?

Make sure when you chmod that the file is still a socket.  Shouldn't
be a problem.

I don't really have much to add.

a quick google search on "mysql.sock permissions" shows this bug:

http://bugs.mysql.com/bug.php?id=11380

did you also upgrade mysql when you did the OS upgrade ? If so, backup
your stuff and run mysql_install_db.  That's the only suggestion I
have, other than doing a google search as I did and look at more than
the first 2 results (which was what I did to find that bug).

-Sheeri

On 2/19/06, Norman Walsh <[EMAIL PROTECTED]> wrote:
> A couple of days ago, I decided to be brave (or crazy :-) and upgrade
> my Ubuntu "Breezy" install to "Dapper". It was really remarkably
> uneventful, I've just got a couple of rough edges to sort out.
>
> One is that dspam (3.4.9 built by me some months ago) can no longer
> connect to mysql when I reboot the machine. The problem appears to be
> permissions related. On boot, /var/run/mysqld is owned by mysql and in
> the root group with 770 permissions. That means that dspam can't open
> /var/run/mysqld/mysqld.sock to connect to the database.
>
> I've been fixing the problem with
>
>   chgrp mysql /var/run/mysqld
>   chmod 775 /var/run/mysqld
>
> but (1) is that the safe and correct thing to do and (2) if it is, how
> can I get mysql to do that by default when it starts?
>
> Be seeing you,
>   norm
>
> --
> Norman Walsh <[EMAIL PROTECTED]> | We have fewer friends than we imagine,
> http://nwalsh.com/| but more than we know.--Hugo Von
>   | Hofmannsthal
>
>
>

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions for the install

[Michael Stassen]

Bruce Martin wrote:
What should the permissions be for the MySQL 5 install on Mac OS X. By 
default it was Owner = System Group = wheel.


Could someone give me a list of directories and what owner:group 
settings I should have?



Bruce Martin
The Martin Solution
PO Box 644
Delaware Water Gap, PA
(570) 421-0670
[EMAIL PROTECTED]


Usually, the mysql directory and its contents are owned by root, except the data 
directory and its contents, which must be owned by mysql.  Groups don't matter 
to mysql itself, but are useful externally.  Group wheel is fine for the 
root-owned stuff, but group mysql is typical for the mysql-owned data directory, 
including contents.  This is described in the manual 
.


Michael


--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: permissions of ordinary users?

[Victoria Reznichenko]

beginner <[EMAIL PROTECTED]> wrote:
> Hi,
> i got mysql 4.0.13 on my machine. When i installed it,
> i did only basic stuff to get it running (bascilly hit
> setup). 
> Now, i'm getting a little bit closer to mysql (the
> system starts to became more friendly), but i got the
> following problem:
> - if i log as shell>mysql 
> this user seems to have access to modify all databases
> (i would want it to happen only when i log as shell>
> mysql -h localhost -u root -p )

On Windows user ''@'localhost' has all privileges.

> How can i configure mysql NOT to accept logins with
> only shell> mysql , i mean without beeing a specified user?

Remove entries for anonymous user:

DELETE FROM user WHERE user='';
FLUSH PRIVILEGES;


-- 
For technical support contracts, goto https://order.mysql.com/?ref=ensita
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com





-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Permissions

[Francisco Herrera]

You could use views but they will not be available until version 5 or 5.1

In the doc you can find :

Views are useful for allowing users to access a set of relations (tables) as
if it were a single table, and limiting their access to just that. Views can
also be used to restrict access to rows (a subset of a particular table).
One does not require views to restrict access to columns, as MySQL Server
has a sophisticated privilege system. See section 5.4 The MySQL Access
Privilege System (http://www.mysql.com/doc/en/Privilege_system.html).


Maybe this could help you

Francisco

-Original Message-
From: Manuele [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 26, 2004 5:44 PM
To: [EMAIL PROTECTED]
Subject: Permissions


Hello,
I'd like to apologize, I know what I am asking is probably impossibile,
but I would like to know if someone has a way to set up permissions on a row
basis, for example if a certain condition matches (for example, grant select
on
row if columnA is NULL).
Anyone has any idea on how to do so?
I wouldn't like to devolve this to the application, as users will have a
mysql
username/password and they MIGHT directly connect to the db.

Thanks in advance.

--
Manuele


-
This mail sent through IMP: http://horde.org/imp/


--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Permissions questions

[William Baker]

If you insert records directly into the tables in mysql, then they only 
have the rights you specifically specify.  GRANT is smart enough to 
handle a lot of the dirty-work for you.  In particular, I like the:

GRANT SELECT on *.* to readonly@'%' identified by 'readonly';

This will create the user readonly, create the host '%', set the 
password, and who knows what else.

You know, mysql documentation usually refers to the host, network, and 
user permissions as the "big three".  Your "big three" are all inside 
the user level permissions.

2-cents.

bbaker

Hey everybody --

I'm trying to get a handle on permissions in MySQL. I've read the manual several times, and I still lack the 'big picture'. 

It seems to me there are three levels of security:
1. Database permissions
2. Table permissions
3. column permissions. 

What I don't understand is how all three interact. For instance, if you want to give a user 'update' rights to a particular column, what db and table permissions must they have? 

TIA!

Steve Lefevre

 



--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: permissions error for the slave server

[Dan Rossi]

a completely different error now i tried a different user and for some
reason my grants are not working on the replication user

030303  8:43:30  Slave I/O thread: connected to master
'[EMAIL PROTECTED]:330
6',  replication started in log 'FIRST' at position 4
030303  8:43:30  Error reading packet from server: Binary log is not open
(server_
errno=1236)
030303  8:43:30  Got fatal error 1236: 'Binary log is not open' from master
when r
eading data from binary log
030303  8:43:30  Slave I/O thread exiting, read up to log 'FIRST', position
4


-Original Message-
From: Dan Rossi [mailto:[EMAIL PROTECTED]
Sent: Sunday, March 02, 2003 7:33 PM
To: Dan Rossi; [EMAIL PROTECTED]
Subject: RE: permissions error for the slave server


has anyone got any idea why it wont let the slave connect properly ?

here is my slave settings

port= 3307
socket  = /usr/local/etc/mysqlslave/tmp/mysql.sock
master-host=localhost
master-user=replication
master-password=***
master-port=3306
master-connect-retry=60
report-host=localhost
report-port=3307
server-id=2


-Original Message-
From: Dan Rossi [mailto:[EMAIL PROTECTED]
Sent: Saturday, March 01, 2003 7:55 PM
To: [EMAIL PROTECTED]
Subject: RE: permissions error for the slave server


hi there my sql slave server cannot replicate as its getting permissions
errors dont know what happened but its not happy now

030302  7:09:24  Slave I/O thread killed while connecting to master
030302  7:09:24  Slave I/O thread exiting, read up to log 'FIRST', position
4
030302  7:09:29  Slave I/O thread: error connecting to master
'[EMAIL PROTECTED]:3306': Error: 'Access denied for
user: '[EMAIL PROTECTED]' (Using password: YES)'  errno: 1045
retry-time: 60  retries: 86400

i did this on the master

GRANT REPLICATION SLAVE, RELOAD, SUPER ON *.* TO [EMAIL PROTECTED]
IDENTIFIED BY '*';



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail
<[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail
<[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: permissions error for the slave server

[Dan Rossi]

has anyone got any idea why it wont let the slave connect properly ?

here is my slave settings

port= 3307
socket  = /usr/local/etc/mysqlslave/tmp/mysql.sock
master-host=localhost
master-user=replication
master-password=***
master-port=3306
master-connect-retry=60
report-host=localhost
report-port=3307
server-id=2


-Original Message-
From: Dan Rossi [mailto:[EMAIL PROTECTED]
Sent: Saturday, March 01, 2003 7:55 PM
To: [EMAIL PROTECTED]
Subject: RE: permissions error for the slave server


hi there my sql slave server cannot replicate as its getting permissions
errors dont know what happened but its not happy now

030302  7:09:24  Slave I/O thread killed while connecting to master
030302  7:09:24  Slave I/O thread exiting, read up to log 'FIRST', position
4
030302  7:09:29  Slave I/O thread: error connecting to master
'[EMAIL PROTECTED]:3306': Error: 'Access denied for
user: '[EMAIL PROTECTED]' (Using password: YES)'  errno: 1045
retry-time: 60  retries: 86400

i did this on the master

GRANT REPLICATION SLAVE, RELOAD, SUPER ON *.* TO [EMAIL PROTECTED]
IDENTIFIED BY '*';



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail
<[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: permissions error for the slave server

[Dan Rossi]

hi there my sql slave server cannot replicate as its getting permissions
errors dont know what happened but its not happy now

030302  7:09:24  Slave I/O thread killed while connecting to master
030302  7:09:24  Slave I/O thread exiting, read up to log 'FIRST', position
4
030302  7:09:29  Slave I/O thread: error connecting to master
'[EMAIL PROTECTED]:3306': Error: 'Access denied for
user: '[EMAIL PROTECTED]' (Using password: YES)'  errno: 1045
retry-time: 60  retries: 86400

i did this on the master

GRANT REPLICATION SLAVE, RELOAD, SUPER ON *.* TO [EMAIL PROTECTED]
IDENTIFIED BY '*';



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: RE: permissions mysql.user

[Victoria Reznichenko]

Hello Gavin,
Thursday, October 17, 2002, 3:40:11 PM, you wrote:

GL> Thanks for your reply Victoria .

You're welcome.

>> GL> How is the best way to reconstruct this table?
>> Add users again. Or what you mean "reconstruct"?

GL> What I wish to do is add users, I can read the sytax which gives me the
GL> ability to do this, but what I dont know is the best way to go about this,
GL> what users to add and what permissions to assign to them. I am unsure if
GL> there is a specail order in which to do this?

Gavin, the general rule for me is not to give surplus permissions
to users ;)

GL> I considered mannually adding admin@local host into the user table and then
GL> logging in as admin and using the GRANT statement to add new users and
GL> permissions. Is this recomended?

You can use GRANT to add admin@localhost, too :-)


-- 
For technical support contracts, goto https://order.mysql.com/?ref=ma02-010c
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com





-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

re: permissions mysql.user

[Victoria Reznichenko]

Gavin,
Wednesday, October 16, 2002, 3:59:04 PM, you wrote:

GL> I have a mysql database (version 3.23.47) running on a virtual server.

GL> I have taken the running over from someone else and have been having trouble
GL> with database permissions. To combat this I bypassed passwords by creating a
GL> my.cnf file. I then have deleted all records in the mysql.user table and am
GL> starting afresh.

Deleteting all records from privilege table is not the best way to avoid
"access denied" problem.

GL> How is the best way to reconstruct this table?

Add users again. Or what you mean "reconstruct"?

GL> Can I add admin@localhost and
GL> say a webmaster with access from anywhere?

Yes. "%" in the Host field means any host:
 http://www.mysql.com/doc/en/Request_access.html

GL> I have looked everywhere for a security guide, can any one point me in the
GL> direction of good practice documents?

In the MySQL manual there are enough info about how MySQL privilege
system works, how to add new user, change passwords, add/revoke
privileges:
   http://www.mysql.com/doc/en/Privilege_system.html
   http://www.mysql.com/doc/en/User_Account_Management.html

GL> I need to learn more about creating
GL> accounts for websites to query databases.


-- 
For technical support contracts, goto https://order.mysql.com/?ref=ma02-010c
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com





-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: RE: permissions questions...

[Victoria Reznichenko]

Caron,
Thursday, August 01, 2002, 7:48:40 PM, you wrote:

C> Yes, but when I create a user with any other grants, it generates
C> automatically this "grant usage on *.*":

mysql> use Liste_MP3;
C> Reading table information for completion of table and column names
C> You can turn off this feature to get a quicker startup with -A

C> Database changed
mysql> grant select on Liste_MP3.* to usernew@localhost identified by
C> "password";
C> Query OK, 0 rows affected (0.01 sec)

mysql> show grants for usernew@localhost;
C> +---
C> 
C> +
C> | Grants for usernew@localhost
C> |
C> +---
C> 
C> +
C> | GRANT USAGE ON *.* TO 'usernew'@'localhost' IDENTIFIED BY PASSWORD
C> '0c2993b965
C> 2e3c06' |
C> | GRANT SELECT ON Liste_MP3.* TO 'usernew'@'localhost'
C> |
C> +---
C> 
C> +
C> 2 rows in set (0.00 sec)

C> It's a new user I never entered before, and still, it generates this usage
C> on *.*...

Because you gave permissions only on the specific database, not on all
databases.
MySQL has four levels of privileges:
global level, database level, table level and column level.

The output of SHOW GRANTS means that 'usernew' has no global
privileges (USAGE) and has SELECT privilege on the database 'Liste_MP3'.



C> Thanks!

C> -Original Message-
C> From: Victoria Reznichenko [mailto:[EMAIL PROTECTED]]
C> Sent: 1 août, 2002 11:32
C> To: [EMAIL PROTECTED]
C> Subject: Re: permissions questions...


C> Caron,
C> Thursday, August 01, 2002, 5:34:16 PM, you wrote:

C>> mysql> show grants for nouveau@localhost;
C>>
Ceoen> +---
C>> +
C>> | Grants for nouveau@localhost|
C>>
Ceoen> +---
C>> +
C>> | GRANT USAGE ON *.* TO 'nouveau'@'localhost' IDENTIFIED BY PASSWORD
C>> '4be6641910d7bc1b' |
C>>
Ceoen> +---
C>> +
C>> 1 row in set (0.00 sec)

C>> mysql> revoke usage on *.* from nouveau@localhost;
C>> Query OK, 0 rows affected (0.00 sec)

C>> Is there a way to get rid of that?

Ceoen> :-)
Ceoen> Yes, give to user 'nouveau' any privileges except USAGE.
Ceoen> USAGE is a synonim for 'no privileges'.

C>> Is there a way to create a user by giving access to only one database,
C>> without giving him the permission to "mysqlshow --user=[thisuser]
C>> --password=[thispassword]" and retrieve all database names? He should see
C>> only the name of his database...?

C> Yes, start mysqld with --safe-show-database option. And since 4.0.2
C> there is a SHOW DATABASES privilege.




-- 
For technical support contracts, goto https://order.mysql.com/?ref=ensita
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions questions...

[Bill Leonard]

on 8/1/02 11:32 AM, Victoria Reznichenko at [EMAIL PROTECTED]
wrote:

> C> Is there a way to create a user by giving access to only one database,
> C> without giving him the permission to "mysqlshow --user=[thisuser]
> C> --password=[thispassword]" and retrieve all database names? He should see
> C> only the name of his database...?
> 
> Yes, start mysqld with --safe-show-database option. And since 4.0.2
> there is a SHOW DATABASES privilege.

Following up on this... (as a MySQL newbie)!

Is this option somehow specified in the my.conf file? What is the example
syntax? Or if not, where would this be specified (so when MySQL starts as a
service on its own, this option is included).

Thanks for any pointers!


-- 
Bill Leonard   [EMAIL PROTECTED]
www.machinemen.com407.464.0147


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: permissions questions...

[Caron, Christian]

Yes, but when I create a user with any other grants, it generates
automatically this "grant usage on *.*":

mysql> use Liste_MP3;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A

Database changed
mysql> grant select on Liste_MP3.* to usernew@localhost identified by
"password";
Query OK, 0 rows affected (0.01 sec)

mysql> show grants for usernew@localhost;
+---

+
| Grants for usernew@localhost
|
+---

+
| GRANT USAGE ON *.* TO 'usernew'@'localhost' IDENTIFIED BY PASSWORD
'0c2993b965
2e3c06' |
| GRANT SELECT ON Liste_MP3.* TO 'usernew'@'localhost'
|
+---

+
2 rows in set (0.00 sec)

It's a new user I never entered before, and still, it generates this usage
on *.*...

Thanks!

-Original Message-
From: Victoria Reznichenko [mailto:[EMAIL PROTECTED]]
Sent: 1 août, 2002 11:32
To: [EMAIL PROTECTED]
Subject: Re: permissions questions...


Caron,
Thursday, August 01, 2002, 5:34:16 PM, you wrote:

C> mysql> show grants for nouveau@localhost;
C>
+---
C> +
C> | Grants for nouveau@localhost|
C>
+---
C> +
C> | GRANT USAGE ON *.* TO 'nouveau'@'localhost' IDENTIFIED BY PASSWORD
C> '4be6641910d7bc1b' |
C>
+---
C> +
C> 1 row in set (0.00 sec)

C> mysql> revoke usage on *.* from nouveau@localhost;
C> Query OK, 0 rows affected (0.00 sec)

C> Is there a way to get rid of that?

:-)
Yes, give to user 'nouveau' any privileges except USAGE.
USAGE is a synonim for 'no privileges'.

C> Is there a way to create a user by giving access to only one database,
C> without giving him the permission to "mysqlshow --user=[thisuser]
C> --password=[thispassword]" and retrieve all database names? He should see
C> only the name of his database...?

Yes, start mysqld with --safe-show-database option. And since 4.0.2
there is a SHOW DATABASES privilege.




-- 
For technical support contracts, goto https://order.mysql.com/?ref=ensita
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail
<[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions questions...

[Victoria Reznichenko]

Caron,
Thursday, August 01, 2002, 5:34:16 PM, you wrote:

C> mysql> show grants for nouveau@localhost;
C> +---
C> +
C> | Grants for nouveau@localhost|
C> +---
C> +
C> | GRANT USAGE ON *.* TO 'nouveau'@'localhost' IDENTIFIED BY PASSWORD
C> '4be6641910d7bc1b' |
C> +---
C> +
C> 1 row in set (0.00 sec)

C> mysql> revoke usage on *.* from nouveau@localhost;
C> Query OK, 0 rows affected (0.00 sec)

C> Is there a way to get rid of that?

:-)
Yes, give to user 'nouveau' any privileges except USAGE.
USAGE is a synonim for 'no privileges'.

C> Is there a way to create a user by giving access to only one database,
C> without giving him the permission to "mysqlshow --user=[thisuser]
C> --password=[thispassword]" and retrieve all database names? He should see
C> only the name of his database...?

Yes, start mysqld with --safe-show-database option. And since 4.0.2
there is a SHOW DATABASES privilege.




-- 
For technical support contracts, goto https://order.mysql.com/?ref=ensita
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions problems

[Gerald Clark]

If mysql owns them, 0770 should be fine.

System Administrator a.k.a. The Root of the Problem wrote:

>USually all the databases sets up fine BUT recently, I have
>had to adjust databases to 0777 in order to get them to 
>work and change the ownership.
>
>I prefer the more secure model of mysql.
>
>How can I fix this?
>



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions problem

[Gerald Clark]

Since -p=""  is not valid syntax, it should not work.
There is no equal sign after the -p, and no space between the p and the 
password which needs no quotes.
If you have no password leave out the -p  option.


Derek Fountain wrote:

>Hi,
>
>I have a server running 3.23.41 on Redhat 7.1. The problem is that I can't 
>access a database as a local user, but I can as a remote user. That is, on 
>the local machine I get this:
>
>>/usr/bin/mysqladmin -u tpdb -p="" create fred
>>
>/usr/bin/mysqladmin: connect to server at 'localhost' failed
>error: 'Access denied for user: 'tpdb@localhost' (Using password: YES)'
>
>whereas if I access the machine from another Linux box:
>
>>/usr/bin/mysqladmin -h lowenbrau -u tpdb -p="" create fred
>>
>
>it works. If I do it as the MySQL root user on the local machine that works 
>OK. I assume something's wrong with my local tpdb user.
>
>The permissions are set as follows (after a lot of faffing about - I'm not 
>suggesting these are optimal settings, or the ones I should have):
>
>localhost root "" 
>lowenbrau.my.domain root "" 
>lowenbrau.my.domain tpdb "" 
>% tpdb "" 
>localhost tpdb "" 
>
>I've reloaded (and actually restarted) the server, but it won't play. There's 
>nothing in the db table except a couple of "test" database entries.
>
>I'm reading up on security issues, but I have someone waiting on this, so if 
>anyone could give me a pointer as to what I've done wrong, I'd much 
>appreciate it.
>



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Re: Permissions are now denied from the mysql client

[Victoria Reznichenko]

Ruben,
Sunday, June 23, 2002, 10:51:59 AM, you wrote:

RIS> Of course it's running.  I can only get in as the root user
RIS> of the system

Check where your mysql.sock is located and check permissions on the socket file.

RIS> On 2002.06.23 03:51 Brandon McCombs wrote:
>> 
>> 
>> Ruben I Safir wrote:
>> > 
>> > I recently installed mysql on a new system and the client on works with root?
>> > 
>> > Whats up?
>> > 
>> > ruben@www2:~> !mys
>> > mysql -p
>> > Enter password:
>> > ERROR 2002: Can't connect to local MySQL server through socket '/tmp/mysql.sock' 
>(2)
>> > ruben@www2:~>
>>
>> mysqld isn't running. Launch mysqld then try using the mysql client to
>> access the databases.




-- 
For technical support contracts, goto https://order.mysql.com/?ref=ensita
This email is sponsored by Ensita.net http://www.ensita.net/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Victoria Reznichenko
 / /|_/ / // /\ \/ /_/ / /__   [EMAIL PROTECTED]
/_/  /_/\_, /___/\___\_\___/   MySQL AB / Ensita.net
   <___/   www.mysql.com




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions are now denied from the mysql client

[Brandon McCombs]

Ruben I Safir wrote:
> 
> I recently installed mysql on a new system and the client on works with root?
> 
> Whats up?
> 
> ruben@www2:~> !mys
> mysql -p
> Enter password:
> ERROR 2002: Can't connect to local MySQL server through socket '/tmp/mysql.sock' (2)
> ruben@www2:~>
> 

mysqld isn't running. Launch mysqld then try using the mysql client to
access the databases.

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions are now denied from the mysql client

[Ruben I Safir]

Of course it's running.  I can only get in as the root user
of the system


On 2002.06.23 03:51 Brandon McCombs wrote:
> 
> 
> Ruben I Safir wrote:
> > 
> > I recently installed mysql on a new system and the client on works with root?
> > 
> > Whats up?
> > 
> > ruben@www2:~> !mys
> > mysql -p
> > Enter password:
> > ERROR 2002: Can't connect to local MySQL server through socket '/tmp/mysql.sock' 
>(2)
> > ruben@www2:~>
> > 
> 
> mysqld isn't running. Launch mysqld then try using the mysql client to
> access the databases.
> 
-- 
__

Brooklyn Linux Solutions
__
http://www.mrbrklyn.com - Consulting
http://www.brooklynonline.com - For the love of Brooklyn
http://www.nylxs.com - Leadership Development in Free Software
http://www.nyfairuse.org - The foundation of Democracy
http://www2.mrbrklyn.com/resources - Unpublished Archive or stories and articles from 
around the net
http://www2.mrbrklyn.com/mp3/dr.mp3 - Imagine my surprise when I saw you...
http://www2.mrbrklyn.com/downtown.html - See the New Downtown Brooklyn

1-718-382-5752




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions for mysqladmin

[Gerald Clark]

Cindy Nelson wrote:

> Hi,
>
> I am using SuSE 7.0 and MySQL 4.0.1. I had quite a time
> getting the daemon started on Linux but finally succeeded.
> I can start the daemon logged on as su and I can connect
> to the database as user=mysql and modify the existing DB
> called test.
>
> I set the permissions as recommended in INSTALL-BINARY.
> Logged on as "su" I did the following:
>  chown -R root /usr/local/mysql 

that should be mysql, not root
chown -R mysql:mysql  /usr/local/mysql

>
>  chown -R mysql /usr/local/mysql/data 

not necessary - see above.

>
>  chgrp -R  /usr/local/mysql 

You forgot the group, but not necessary - see above.

>
>  chown -R /usr/root/local/mysql/bin

You forgot the user, but this should be ok from the chown -R 
 mysql:mysql /usr/local/mysql above

>
>
> Apparently what should happen is the system administrator should
> be able to start and stop the daemon and control the binary files and
> anybody in the group that I created "mysql" should be able to manipulate
> data in the DBs to which they have permissions. 

Only the mysqld  manipulates the data.

>
>
> Well.. I have a problem when I try to issue the
> command to create a new database. 

try:
mysql -u root

That should get you in.
You need to read the manual section on privileges.
You have to set up privileges for other users that want to connect to 
the server.

>
>
>   mysqladmin create 
>
> If I am logged on as root or a user in the group mysql, I get the message
> Access denied for @localhost.  I tried doing a chmod on 
> several files
> in mysql but to no avail. Also I notice there is no file in etc called
> my.cfg as the documentation suggests. It seems that the permissions are
> stored in a table in /usr/local/mysql/data/mysql but I cannot get at 
> the table to
> change anything.
>
> It would seem that there is someway to issue some kind of external 
> command
> that would change the permissions for the superuser and user mysql 
> without
> manipulating that table directly.
>
> I am really not concerned about security right now. This is a stand 
> alone Linux
> server at my house that is rarely connected to anything. I just want 
> to practice
> my SQL skills.
>
> Any ideas.
>
>
> **
> Cindy Nelson(404) 213-9498 cell
> 202 Jimmie Nelson Rd SW(770) 382-4474 home
> Kingston, Ga 30145
>
>  e-mail: [EMAIL PROTECTED]
>
> http://home.earthlink.net/~cindynelson
>
> **




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions Question

[Paul DuBois]

At 20:27 -0700 3/14/02, Mike Hillyer wrote:
>I am trying to make a database system in MYSQL, but I need to restrict
>access to certain records in a table, is there any way to only allow access
>to records in a table that have a field matching a certain value?

MySQL's access system can restrict access to the server, to databases,
to tables, and to columns within tables.  But there are no row-based
restrictions.  You'd need to enforce those from within your own applications.

>
>Mike

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Paul DuBois]

At 22:25 +0100 2/9/02, Nick Wilson wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>Hi all,
>I'm having a spot of bother with permissions (i think)
>I just set up MySQL for private developement at home with PHP and
>created a db 'mydb' and granted all privs to nick@localhost
>
>Now, I can 'USE mydb' from the command line but if I try to do the same
>from a php script I get 'Access denied for user: '@localhost' ..

Note that the message doesn't include a user name in front of the '@'.

Which it would if you were specifying one.


>
>Can somebody please tell me what to do?
>
>Many thanks...
>- --
>
>Nick Wilson
>
>Tel:   +45 3325 0688
>Fax:   +45 3325 0677
>Web:   www.explodingnet.com


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Nick Wilson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


* and then Paul DuBois declared
> Note that the message doesn't include a user name in front of the '@'.
> 
> Which it would if you were specifying one.

Hello Paul, 
I did notice that but I /am/ specifying a user mysql_connect($host, 
$user, $pass);

Is that what you mean?

BTW
er... I have your book here :)
- -- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)

iD8DBQE8ZaNXHpvrrTa6L5oRAiPrAJ435aYGm+c3twUrFMzLHfVB+qMkeQCfXGHM
2GcGatSYMx2pQo7kXUjWx58=
=1N7q
-END PGP SIGNATURE-

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Paul DuBois]

At 23:31 +0100 2/9/02, Nick Wilson wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>
>* and then Paul DuBois declared
>>  Note that the message doesn't include a user name in front of the '@'.
>>
>>  Which it would if you were specifying one.
>
>Hello Paul,
> I did notice that but I /am/ specifying a user mysql_connect($host,
>$user, $pass);
>
>Is that what you mean?

Okay, then it's not that, at least if $user has a non-empty value. :-)

>
>BTW
>er... I have your book here :)

Ah.  Well, in *that* case, check p429 and pp464-465.  You may be getting
bit by the phenomenon described there.

>- --
>
>Nick Wilson
>
>Tel:   +45 3325 0688
>Fax:   +45 3325 0677
>Web:   www.explodingnet.com
>
>
>
>-BEGIN PGP SIGNATURE-
>Version: GnuPG v1.0.6 (GNU/Linux)
>
>iD8DBQE8ZaNXHpvrrTa6L5oRAiPrAJ435aYGm+c3twUrFMzLHfVB+qMkeQCfXGHM
>2GcGatSYMx2pQo7kXUjWx58=
>=1N7q
>-END PGP SIGNATURE-
>
>-
>Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
>
>To request this thread, e-mail <[EMAIL PROTECTED]>
>To unsubscribe, e-mail <[EMAIL PROTECTED]>
>Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Paul DuBois]

At 0:19 +0100 2/10/02, Nick Wilson wrote:
>* and then Paul DuBois declared
>>  >BTW
>>  >er... I have your book here :)
>>
>>  Ah.  Well, in *that* case, check p429 and pp464-465.  You may be getting
>>  bit by the phenomenon described there.
>sql
>
>Aha! Well that certainly appears to be it but now I'm getting Access
>denied to user apache@localhost
>
>What next Paul?

Do you have an entry for user apache, host localhost in the user
table, and have you deleted the entries for user='' and run FLUSH
PRIVILEGES?

>
>
>Much thanks BTW
>--
>
>Nick Wilson
>
>Tel:   +45 3325 0688
>Fax:   +45 3325 0677
>Web:   www.explodingnet.com


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Nick Wilson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
sql

* and then Paul DuBois declared
> Do you have an entry for user apache, host localhost in the user

No just entries for 'nick' and 'root'

> table, and have you deleted the entries for user='' and run FLUSH
> PRIVILEGES?

Certainly have.
- -- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)

iD8DBQE8ZbGfHpvrrTa6L5oRAmGHAJ4i/zpcnuo+l9NZedwdRi1s923tVACfV2v/
YUD5rUO5rge/dadTNFfbN0c=
=n7Zo
-END PGP SIGNATURE-

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Nick Wilson]

* and then Paul DuBois declared
> >BTW
> >er... I have your book here :)
> 
> Ah.  Well, in *that* case, check p429 and pp464-465.  You may be getting
> bit by the phenomenon described there.
sql

Aha! Well that certainly appears to be it but now I'm getting Access
denied to user apache@localhost

What next Paul?


Much thanks BTW
-- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Nick Wilson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
sql

* and then Paul DuBois declared
> Do you have an entry for user apache, host localhost in the user

No just entries for 'nick' and 'root'

> table, and have you deleted the entries for user='' and run FLUSH
> PRIVILEGES?

Certainly have.
- -- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)

iD8DBQE8ZbGfHpvrrTa6L5oRAmGHAJ4i/zpcnuo+l9NZedwdRi1s923tVACfV2v/
YUD5rUO5rge/dadTNFfbN0c=
=n7Zo
-END PGP SIGNATURE-

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Paul DuBois]

At 0:19 +0100 2/10/02, Nick Wilson wrote:
>* and then Paul DuBois declared
>>  >BTW
>>  >er... I have your book here :)
>>
>>  Ah.  Well, in *that* case, check p429 and pp464-465.  You may be getting
>>  bit by the phenomenon described there.
>sql
>
>Aha! Well that certainly appears to be it but now I'm getting Access
>denied to user apache@localhost
>
>What next Paul?

Do you have an entry for user apache, host localhost in the user
table, and have you deleted the entries for user='' and run FLUSH
PRIVILEGES?

>
>
>Much thanks BTW
>--
>
>Nick Wilson
>
>Tel:   +45 3325 0688
>Fax:   +45 3325 0677
>Web:   www.explodingnet.com


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Nick Wilson]

* and then Paul DuBois declared
> >BTW
> >er... I have your book here :)
> 
> Ah.  Well, in *that* case, check p429 and pp464-465.  You may be getting
> bit by the phenomenon described there.
sql

Aha! Well that certainly appears to be it but now I'm getting Access
denied to user apache@localhost

What next Paul?


Much thanks BTW
-- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Paul DuBois]

At 22:25 +0100 2/9/02, Nick Wilson wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>Hi all,
>I'm having a spot of bother with permissions (i think)
>I just set up MySQL for private developement at home with PHP and
>created a db 'mydb' and granted all privs to nick@localhost
>
>Now, I can 'USE mydb' from the command line but if I try to do the same
>from a php script I get 'Access denied for user: '@localhost' ..

Note that the message doesn't include a user name in front of the '@'.

Which it would if you were specifying one.


>
>Can somebody please tell me what to do?
>
>Many thanks...
>- --
>
>Nick Wilson
>
>Tel:   +45 3325 0688
>Fax:   +45 3325 0677
>Web:   www.explodingnet.com


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Paul DuBois]

At 23:31 +0100 2/9/02, Nick Wilson wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>
>* and then Paul DuBois declared
>>  Note that the message doesn't include a user name in front of the '@'.
>>
>>  Which it would if you were specifying one.
>
>Hello Paul,
> I did notice that but I /am/ specifying a user mysql_connect($host,
>$user, $pass);
>
>Is that what you mean?

Okay, then it's not that, at least if $user has a non-empty value. :-)

>
>BTW
>er... I have your book here :)

Ah.  Well, in *that* case, check p429 and pp464-465.  You may be getting
bit by the phenomenon described there.

>- --
>
>Nick Wilson
>
>Tel:   +45 3325 0688
>Fax:   +45 3325 0677
>Web:   www.explodingnet.com
>
>
>
>-BEGIN PGP SIGNATURE-
>Version: GnuPG v1.0.6 (GNU/Linux)
>
>iD8DBQE8ZaNXHpvrrTa6L5oRAiPrAJ435aYGm+c3twUrFMzLHfVB+qMkeQCfXGHM
>2GcGatSYMx2pQo7kXUjWx58=
>=1N7q
>-END PGP SIGNATURE-
>
>-
>Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
>
>To request this thread, e-mail <[EMAIL PROTECTED]>
>To unsubscribe, e-mail <[EMAIL PROTECTED]>
>Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions problem

[Nick Wilson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


* and then Paul DuBois declared
> Note that the message doesn't include a user name in front of the '@'.
> 
> Which it would if you were specifying one.

Hello Paul, 
I did notice that but I /am/ specifying a user mysql_connect($host, 
$user, $pass);

Is that what you mean?

BTW
er... I have your book here :)
- -- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)

iD8DBQE8ZaNXHpvrrTa6L5oRAiPrAJ435aYGm+c3twUrFMzLHfVB+qMkeQCfXGHM
2GcGatSYMx2pQo7kXUjWx58=
=1N7q
-END PGP SIGNATURE-

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions Problems

[Butch Evans]

On Tue, 14 Aug 2001, Gerald Clark wrote:

>You are connecting TO host www.4cdg.com, but the permission table entry
>list the hosts you connect FROM.
>

Actually, it is just one host...I am running on FreeBSD and I have
to specify the hostname on the command line.


>You need to grant privileges to the user and machine you connect FROM.
>

This is explained above.  I did get it working today.  I had done
everything EXCEPT reload the grant tables after I created the users
(right out of the documentation).  Thanks to all for your
assistance.

-- 
Butch Evans
http://www.ChristInVerse.com/
http://www.HeIsComingSoon.com/ (in the works)


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions Problems

[Gerald Clark]

You are connecting TO host www.4cdg.com, but the permission table entry
list the hosts you connect FROM.

You need to grant privileges to the user and machine you connect FROM.

Butch Evans wrote:

> Can anyone explain why this is happening?
> 
> 
> root@www:/# mysql -u dgadmin -h www.4cdg.com -p cdgcatalog
> Enter password: 
> ERROR 1045: Access denied for user: '[EMAIL PROTECTED]' (Using
> password: YES)
> 
> 
> Here is the permissions table:
> mysql> select host,db,user from db where db like "cdgcatalog";
> +--++--+
> | host | db | user |
> +--++--+
> | www.4cdg.com | cdgcatalog | dgadmin  |
> | www.4cdg.com | cdgcatalog | dgpublic |
> +--++--+
> 2 rows in set (0.00 sec)


-- 
Gerald L. Clark
[EMAIL PROTECTED]


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions Problems

[indrek siitan]

Hi,

> Can anyone explain why this is happening?
> 
> 
> root@www:/# mysql -u dgadmin -h www.4cdg.com -p cdgcatalog
> Enter password: 
> ERROR 1045: Access denied for user: '[EMAIL PROTECTED]'
> (Using password: YES)

remove the space between -p and the password.


Rgds,
Indrek

-- 
For technical support contracts, goto https://order.mysql.com/
   __  ___ ___   __
  /  |/  /_ __/ __/ __ \/ /Indrek Siitan <[EMAIL PROTECTED]>
 / /|_/ / // /\ \/ /_/ / /__   MySQL AB, The Web Guru
/_/  /_/\_, /___/\___\_\___/   Tallinn, Estonia
   <___/   www.mysql.com


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: Permissions Problems

[Carsten H. Pedersen]

Do not put a space between "-p" and "cdgcatalog", i.e.
use "-pcdgcatalog".

/ Carsten
--
Carsten H. Pedersen
keeper and maintainer of the bitbybit.dk MySQL FAQ
http://www.bitbybit.dk/mysqlfaq

> -Original Message-
> From: Butch Evans [mailto:[EMAIL PROTECTED]]
> Sent: 14. august 2001 07:48
> To: Mysql List
> Subject: Permissions Problems
> 
> 
> Can anyone explain why this is happening?
> 
> 
> root@www:/# mysql -u dgadmin -h www.4cdg.com -p cdgcatalog
> Enter password: 
> ERROR 1045: Access denied for user: '[EMAIL PROTECTED]' (Using
> password: YES)
> 
> 
> Here is the permissions table:
> mysql> select host,db,user from db where db like "cdgcatalog";
> +--++--+
> | host | db | user |
> +--++--+
> | www.4cdg.com | cdgcatalog | dgadmin  |
> | www.4cdg.com | cdgcatalog | dgpublic |
> +--++--+
> 2 rows in set (0.00 sec)
> 
> 
> -- 
> Butch Evans
> http://www.ChristInVerse.com/
> http://www.HeIsComingSoon.com/ (in the works)
> 
> 
> -
> Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
> 
> To request this thread, e-mail <[EMAIL PROTECTED]>
> To unsubscribe, e-mail 
> <[EMAIL PROTECTED]>
> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
> 

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: permissions, Help for Newbie, question

[ididdy]

say i am running a server with mysql and phpmyadmin and i have some 
dbs (including of course the mysql db)...

so when someone says to "set them up a 'MySQL account'" what exactly 
do they mean? and how do i do it?

TIA

At 9:41 PM -0500 7/30/01, [EMAIL PROTECTED] wrote:
>Hi Nicole,
>I guess the first issue is to be certain that you have the
>correct password and a MySQL account set up.  If you have a
>shell account try something like mysql -u[your user
>name] -p[your password].  Sometimes ISP's will use different
>passwords for MySQL than the standard log in, we often do.
>
>Aside from that, I just can't help but mention the security
>risks PHP nuke has.  We looked at it but finally settled on
>eZ publish.  In fact we liked it so much we are now a
>certified eZ publish host.
>
>Double check your MySQL user and password and try logging in
>through the shell, or PHPadmin (you may want to check that
>out too) or a third party client running locally like
>netadmin if your ISP allows it.
>
>Best regards,
>-Eric
>
>Eric C Williams
>[EMAIL PROTECTED]
>
  E-BUILDERS, LLC >>>
>CERTIFIED MIVA BUSINESS PARTNER >>> CERTIFIED eZ publish
>HOST  --
>HTTP://E-PORTALBUILDER.COM HTTP://E-BUILDERS.COM
>HTTP://SECURE-SHOPS.NET >
>TELNET|FTP|CGI|SSL|MIVA|PHP|SSH|SSI|PERL|PHP4|MySQL|2.5 Gbps
>network|>>>
>
>
>
>>  -Original Message-
>>  From: Nicole Lancaster [mailto:[EMAIL PROTECTED]]
>>  Sent: Monday, July 30, 2001 8:37 PM
>>  To: [EMAIL PROTECTED]
>>  Subject: permissions, Help for Newbie, Nicole
>>
>>
>>  Hello,
>>
>>  First of all, let me say I am a complete novice
>>  when it comes to PHP and
>>  MySQL. I am trying to install PHPNuke and I get
>>  this error when I try to
>>  access it:
>>
>>  Warning: MySQL Connection Failed: Access denied
>>  for user: 'me@localhost'
>>  (Using password: YES) in
>>  /home/www/me/nuke/html/mainfile.php on line 33
>>  Unable to select database
>>
>>
>>  Line 33 on the main php file is were it calls for
>>  access to the data base.
>>  My web host says that it is my problem with the
>>  program (which of course
>>  they do not provide support for). But it seems to
>>  me it's their problem, an
>>  access issue. My guess would be that they need to
>>  set up access/permission
>>  for me. Please inform me if my thinking is wrong here.
>>
>>  If so, would this script be what I should
>>  recommend that they try??
>>
>>  mysql> GRANT SELECT, INSERT, UPDATE ON client_db.*
>>  TO db_user@localhost IDENTIFIED BY 'password';
>>
>>  Thanks for your time,
>>  Nicole
>>
>>
>>
>
>
>-
>Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
>
>To request this thread, e-mail <[EMAIL PROTECTED]>
>To unsubscribe, e-mail <[EMAIL PROTECTED]>
>Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: permissions, Help for Newbie, Nicole

[admin-list]

Hi Nicole,
I guess the first issue is to be certain that you have the
correct password and a MySQL account set up.  If you have a
shell account try something like mysql -u[your user
name] -p[your password].  Sometimes ISP's will use different
passwords for MySQL than the standard log in, we often do.

Aside from that, I just can't help but mention the security
risks PHP nuke has.  We looked at it but finally settled on
eZ publish.  In fact we liked it so much we are now a
certified eZ publish host.

Double check your MySQL user and password and try logging in
through the shell, or PHPadmin (you may want to check that
out too) or a third party client running locally like
netadmin if your ISP allows it.

Best regards,
-Eric

Eric C Williams
[EMAIL PROTECTED]

>>> E-BUILDERS, LLC >>>
CERTIFIED MIVA BUSINESS PARTNER >>> CERTIFIED eZ publish
HOST  --
HTTP://E-PORTALBUILDER.COM HTTP://E-BUILDERS.COM
HTTP://SECURE-SHOPS.NET >
TELNET|FTP|CGI|SSL|MIVA|PHP|SSH|SSI|PERL|PHP4|MySQL|2.5 Gbps
network|>>>



> -Original Message-
> From: Nicole Lancaster [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 30, 2001 8:37 PM
> To: [EMAIL PROTECTED]
> Subject: permissions, Help for Newbie, Nicole
>
>
> Hello,
>
> First of all, let me say I am a complete novice
> when it comes to PHP and
> MySQL. I am trying to install PHPNuke and I get
> this error when I try to
> access it:
>
> Warning: MySQL Connection Failed: Access denied
> for user: 'me@localhost'
> (Using password: YES) in
> /home/www/me/nuke/html/mainfile.php on line 33
> Unable to select database
>
>
> Line 33 on the main php file is were it calls for
> access to the data base.
> My web host says that it is my problem with the
> program (which of course
> they do not provide support for). But it seems to
> me it's their problem, an
> access issue. My guess would be that they need to
> set up access/permission
> for me. Please inform me if my thinking is wrong here.
>
> If so, would this script be what I should
> recommend that they try??
>
> mysql> GRANT SELECT, INSERT, UPDATE ON client_db.*
> TO db_user@localhost IDENTIFIED BY 'password';
>
> Thanks for your time,
> Nicole
>
>
>


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions - again

[Nicole Lancaster]

- Original Message -
From: Carsten H. Pedersen <[EMAIL PROTECTED]>
To: Robert Roberts <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Saturday, July 28, 2001 6:31 PM
Subject: RE: permissions - again


> > My assumption:
> > mysql> GRANT SELECT, INSERT, UPDATE ON client_db.*
> > TO db_user@localhost IDENTIFIED BY 'password';
> >
> > Now this is where I get a bit confused. It's not clear to me where the
> > client is connecting from. I assume they are connecting from  localhost
> > because everything is all on the same server. But:
>
> The PHP script will usually connect from/to localhost, yes.
>
> > ---are they, in actuality, connecting from their own virtual host, "
> > [EMAIL PROTECTED] "?
>
> I shouldn't think so. But why don't you let them try it
> out? The error message returned will usually something along
> the lines of "Access denied for [EMAIL PROTECTED] (using
> password: YES)" - that will tell you, how MySQL thinks the
> user is conecting.
>
> > ---they are connecting from a remote machine, so are they, then,
> > connecting
> > from some other host?
>
> Err... methinks, that's rather obvious: Yes.
>
> > ---if they are connecting from a remote machine with a dial-up
connection,
> > then it is undoubtedly a dynamic IP address, so there would be no
> > consistent
> > "host" to connect from.
>
> No, and while you cannot lock this problem down completely,
> you can at least limit the size of the opening between the
> gateposts: MySQL allows you to specify only parts of an IP
> mask as the host (something like "db_user"@"192.168.%.%" --
> I forget the exact syntax; it's in  the manual). Once you know the
> possible range of IPs their ISP provides, you can limit the
> database access to these.
>
> / Carsten
> --
> Carsten H. Pedersen
> keeper and maintainer of the bitbybit.dk MySQL FAQ
> http://www.bitbybit.dk/mysqlfaq
>
>
> -
> Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
>
> To request this thread, e-mail <[EMAIL PROTECTED]>
> To unsubscribe, e-mail
<[EMAIL PROTECTED]>
> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
>
>

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

RE: permissions - again

[Carsten H. Pedersen]

> My assumption:
> mysql> GRANT SELECT, INSERT, UPDATE ON client_db.*
> TO db_user@localhost IDENTIFIED BY 'password';
>
> Now this is where I get a bit confused. It's not clear to me where the
> client is connecting from. I assume they are connecting from  localhost
> because everything is all on the same server. But:

The PHP script will usually connect from/to localhost, yes.

> ---are they, in actuality, connecting from their own virtual host, "
> [EMAIL PROTECTED] "?

I shouldn't think so. But why don't you let them try it
out? The error message returned will usually something along
the lines of "Access denied for [EMAIL PROTECTED] (using
password: YES)" - that will tell you, how MySQL thinks the
user is conecting.

> ---they are connecting from a remote machine, so are they, then,
> connecting
> from some other host?

Err... methinks, that's rather obvious: Yes.

> ---if they are connecting from a remote machine with a dial-up connection,
> then it is undoubtedly a dynamic IP address, so there would be no
> consistent
> "host" to connect from.

No, and while you cannot lock this problem down completely,
you can at least limit the size of the opening between the
gateposts: MySQL allows you to specify only parts of an IP
mask as the host (something like "db_user"@"192.168.%.%" --
I forget the exact syntax; it's in  the manual). Once you know the
possible range of IPs their ISP provides, you can limit the
database access to these.

/ Carsten
--
Carsten H. Pedersen
keeper and maintainer of the bitbybit.dk MySQL FAQ
http://www.bitbybit.dk/mysqlfaq


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions - again

[joseph . bueno]

Robert Roberts wrote:
> 
> I am new to this list. I posted a perfectly honest question, but all I get
> back is an email from [EMAIL PROTECTED] saying NO SPAM PLEASE. I checked
> appua.com. The site is in Russian. I don't understand why I'm getting this.
> Perhaps someone can explain. In the meantime, here's my question -- again:
> 
> 
> I have read and re-read the available documentation and a variety of
> tutorials regarding the MySQL Access Privelege System, but am still unclear
> on a few details. MySQL is successfully installed, I am able to connect,
> create databases,
> tables, etc., and have so far been successful in obtaining results I've
> wanted.
> 
> The scenario:
> ---I'm running a small server with FreeBSD 3.4, Apache 1.3.17, PHP 4.0.4pl1,
> and have just migrated to MySQL 3.23.40 [yes, I must now re-build
> Apache/php].
> ---The server hosts my own sites, plus a few others.
> 
> The goal:
> ---I want to set up a database for one of my hosting clients. They would
> like to use a php-based application for events announcements, which requires
> access to a database. The php application sets up a browser-based
> administration gui. I would do all set-up for them, and show them how to use
> it.
> 
> My assumption:
> mysql> GRANT SELECT, INSERT, UPDATE ON client_db.*
> TO db_user@localhost IDENTIFIED BY 'password';
> 
> Now this is where I get a bit confused. It's not clear to me where the
> client is connecting from. I assume they are connecting from  localhost
> because everything is all on the same server. But:
> ---are they, in actuality, connecting from their own virtual host, "
> [EMAIL PROTECTED] "?
> ---they are connecting from a remote machine, so are they, then, connecting
> from some other host?
> ---if they are connecting from a remote machine with a dial-up connection,
> then it is undoubtedly a dynamic IP address, so there would be no consistent
> "host" to connect from.
> 
> I believe I've supplied all relevant info, so if someone is able to shed
> some light on this, I will be most appreciative.
> 
> Thanks,
> Robert Roberts
> [EMAIL PROTECTED]
> 

Hi,

>From mysql point of view, the client is your php application.
Since both are running on the same machine, your GRANT statement is OK
as long as you use 'localhost' as mysql hostname in your php scripts.

Regards 
--
Joseph Bueno
NetClub/Trader.com

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions and table creation

[Werner Stuerenburg]

> I'm very new to mysql and adminstration of database software in


Have you tried phpMyAdmin to manage your db? Recommended:

http://www.phpwizard.net/projects/phpMyAdmin/


-- 
Herzlich
Werner Stuerenburg

_
ISIS Verlag, Teut 3, D-32683 Barntrup-Alverdissen
Tel 0(049) 5224-997 407 · Fax 0(049) 5224-997 409
http://pferdezeitung.de



-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions

[Rolf Hopkins]

And what command did you use to create the user?


- Original Message -
From: "Peter I. Hansen" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, June 07, 2001 5:32
Subject: permissions


> Hi
>
> I'm currently adding users to a MySQL server on a LAN (www.xxx.yy), and
> I want the structure to be like this :
>
> 1) user X can connect from '%.xxx.yy' and from 'localhost'.
> 2) user X can only connect to database X.
>
> I can only make one out of two possibillities in 1) work at a time.
>
> Can you help me, Please...
>
> Peter Hansen
>
>
> -
> Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
>
> To request this thread, e-mail <[EMAIL PROTECTED]>
> To unsubscribe, e-mail
<[EMAIL PROTECTED]>
> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: permissions

[Paul DuBois]

At 11:32 PM +0200 6/6/01, Peter I. Hansen wrote:
>Hi
>
>I'm currently adding users to a MySQL server on a LAN (www.xxx.yy), and
>I want the structure to be like this :
>
>1) user X can connect from '%.xxx.yy' and from 'localhost'.
>2) user X can only connect to database X.
>
>I can only make one out of two possibillities in 1) work at a time.
>
>Can you help me, Please...
>
>Peter Hansen

Sounds like:

mysql> GRANT ALL ON X.* TO X@localhost;
mysql> GRANT ALL ON X.* TO X@'%.xx.yy';

-- 
Paul DuBois, [EMAIL PROTECTED]

-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions

[Atle Veka]

mysql caches hostnames, so perhaps 13ave.com is connecting to your
database server as well?

say for instance:
13ave.com connects, mysql resolves that to
$ host 13ave.com
13ave.com has address 12.111.170.18
web.web-ster.com comes along, mysql sees the reverse and says 'Hey, I've
seen you before, you're 13ave.com'


You can turn this behavior off with --skip-host-caching (or whatever it is
mysql --help). BUT, you want to think what load this will give your
nameservers. Consider redoing your DSN perhaps?


Hope this helps.
Atle

On Tue, 20 Feb 2001, Scott Baker wrote:

> I did the following on my mysql server...
> 
> GRANT ALL PRIVILEGES ON database.* TO user@'web.web-ster.com' IDENTIFIED BY 
> 'password'
> FLUSH PRIVILEGES
> 
> So I know the privileges are current...  But when I try and access the 
> database from this IP it says that "host 13ave.com" is not allowed to 
> access the DB server.  I'm trying to run some PHP scripts on it.
> 
> Now host 13ave.com resolves to to 12.111.170.18 but the reverse DNS does NOT...
> 
> If I change web.web-ster.com to the raw IP that it should be it works, but 
> still reports "Aborted connection" in the log.  It's like it tries the 
> reverse DNS first, and it fails and falls back to the raw IP and it works.
> 
> What I don't understand is why it's finding 13ave.com as the hostname 
> because according to my DNS it's NOT.  If I do nslookups from the MYSQL 
> server it sees the web.web-ster.com info, so I don't know where mysql is 
> getting that info.  Anyone have any problems with this?
> 
> Scott
> 
> 
> 
> -
> Scott Baker - Webster Internet - Network Technician
> 503.266.8253 - [EMAIL PROTECTED]
> 
> "Children today are tyrants. They contradict their parents, gobble their 
> food, and tyrannize their teachers." - Socrates
> 
> 
> 
> 
> -
> Before posting, please check:
>http://www.mysql.com/manual.php   (the manual)
>http://lists.mysql.com/   (the list archive)
> 
> To request this thread, e-mail <[EMAIL PROTECTED]>
> To unsubscribe, e-mail <[EMAIL PROTECTED]>
> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
> 


-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php

Re: Permissions

[Scott Baker]

Yep that was it!  Yesterday there was a messup with DNS that caused the 
reverse DNS to be 13ave.com

I quickly changed it, but apparently MySQL cached that entry.  It's been 24 
hours, but still.  As soon as I just did a flush-hosts it came right 
up.  Thanks!

At 12:12 PM 2/20/2001 -0800, Atle Veka wrote:

>mysql caches hostnames, so perhaps 13ave.com is connecting to your
>database server as well?
>
>say for instance:
>13ave.com connects, mysql resolves that to
>$ host 13ave.com
>13ave.com has address 12.111.170.18
>web.web-ster.com comes along, mysql sees the reverse and says 'Hey, I've
>seen you before, you're 13ave.com'
>
>
>You can turn this behavior off with --skip-host-caching (or whatever it is
>mysql --help). BUT, you want to think what load this will give your
>nameservers. Consider redoing your DSN perhaps?


-
Scott Baker - Webster Internet - Network Technician
503.266.8253 - [EMAIL PROTECTED]

"Children today are tyrants. They contradict their parents, gobble their 
food, and tyrannize their teachers." - Socrates




-
Before posting, please check:
   http://www.mysql.com/manual.php   (the manual)
   http://lists.mysql.com/   (the list archive)

To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php