RE: Users and Groups
Date: Wed, 4 Mar 2015 14:04:55 +0100 From: vegiv...@tuxera.be To: lu...@lambrate.inaf.it CC: mysql@lists.mysql.com Subject: Re: Users and Groups That reminds me, this may be of interest: http://www.percona.com/blog/2015/03/02/emulating-roles-percona-pam-plugin-proxy-users/ MGtrès bon johann ! - Original Message - From: Lucio Chiappetti lu...@lambrate.inaf.it To: MySql mysql@lists.mysql.com Sent: Wednesday, 4 March, 2015 12:39:01 Subject: Re: Users and Groups When several years ago a colleague here set up the user interface for an astronomical database (originally using servlets now with Tomcat, and anyhow accessing mysql in JDBC) he considered the internal mysql privilege system, and for some reasons decided not to use it. He wrote an additional layer inside our java front end. We have workspaces, each workspace can access a number of advertised tables, and view advertised columns (but other columns remain accessible if called by name). Users belong to one (or more workspaces) and specify it when logging in our system. All workspaces have readonly access (we do not consider user-writable tables). Our java engine communicates with mysql as a single user. This way we do not have to care about granting access to the mysql server to external hosts. Anyhow I presume that playing around with the grants and privileges tables, one could find a way to write a template set of privileges for a typical user and replicate it for all users of same logical group -- Lucio Chiappetti - INAF/IASF - via Bassini 15 - I-20133 Milano (Italy) For more info : http://www.iasf-milano.inaf.it/~lucio/personal.html Do not like Firefox =29 ? Get Pale Moon ! http://www.palemoon.org -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql -- Unhappiness is discouraged and will be corrected with kitten pictures. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: Users and Groups
On Sun, 1 Mar 2015, Reindl Harald wrote: Am 01.03.2015 um 20:07 schrieb Steffan A. Cline: Has anyone seen a plugin for MySQL that will allow you to set up users and groups for access but it has all features for privileges like for tables, views and even colums, you can even restrict the access of a colum of a view to a user and make a difference if that same user comes from ip-address A or ip-address B When several years ago a colleague here set up the user interface for an astronomical database (originally using servlets now with Tomcat, and anyhow accessing mysql in JDBC) he considered the internal mysql privilege system, and for some reasons decided not to use it. He wrote an additional layer inside our java front end. We have workspaces, each workspace can access a number of advertised tables, and view advertised columns (but other columns remain accessible if called by name). Users belong to one (or more workspaces) and specify it when logging in our system. All workspaces have readonly access (we do not consider user-writable tables). Our java engine communicates with mysql as a single user. This way we do not have to care about granting access to the mysql server to external hosts. Anyhow I presume that playing around with the grants and privileges tables, one could find a way to write a template set of privileges for a typical user and replicate it for all users of same logical group -- Lucio Chiappetti - INAF/IASF - via Bassini 15 - I-20133 Milano (Italy) For more info : http://www.iasf-milano.inaf.it/~lucio/personal.html Do not like Firefox =29 ? Get Pale Moon ! http://www.palemoon.org -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: Users and Groups
That reminds me, this may be of interest: http://www.percona.com/blog/2015/03/02/emulating-roles-percona-pam-plugin-proxy-users/ - Original Message - From: Lucio Chiappetti lu...@lambrate.inaf.it To: MySql mysql@lists.mysql.com Sent: Wednesday, 4 March, 2015 12:39:01 Subject: Re: Users and Groups When several years ago a colleague here set up the user interface for an astronomical database (originally using servlets now with Tomcat, and anyhow accessing mysql in JDBC) he considered the internal mysql privilege system, and for some reasons decided not to use it. He wrote an additional layer inside our java front end. We have workspaces, each workspace can access a number of advertised tables, and view advertised columns (but other columns remain accessible if called by name). Users belong to one (or more workspaces) and specify it when logging in our system. All workspaces have readonly access (we do not consider user-writable tables). Our java engine communicates with mysql as a single user. This way we do not have to care about granting access to the mysql server to external hosts. Anyhow I presume that playing around with the grants and privileges tables, one could find a way to write a template set of privileges for a typical user and replicate it for all users of same logical group -- Lucio Chiappetti - INAF/IASF - via Bassini 15 - I-20133 Milano (Italy) For more info : http://www.iasf-milano.inaf.it/~lucio/personal.html Do not like Firefox =29 ? Get Pale Moon ! http://www.palemoon.org -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql -- Unhappiness is discouraged and will be corrected with kitten pictures. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: Users and Groups
- Original Message - From: Reindl Harald h.rei...@thelounge.net Subject: Re: Users and Groups Am 01.03.2015 um 20:07 schrieb Steffan A. Cline: Has anyone seen a plugin for MySQL that will allow you to set up users and groups for access where you can have a user who can login, create db etc but MySQL don't support user groups There is a plugin for LDAP authentication out there; I haven't played with it myself but I suppose you could use LDAP functionality to emulate groups? -- Unhappiness is discouraged and will be corrected with kitten pictures. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: Users and Groups
Am 01.03.2015 um 20:07 schrieb Steffan A. Cline: Has anyone seen a plugin for MySQL that will allow you to set up users and groups for access where you can have a user who can login, create db etc but ONLY see the stuff that belongs to them? I'm speaking of a shared server where multiple people can use the same instance but be fully separated just like a file share. MySQL don't support user groups but it has all features for privileges like for tables, views and even colums, you can even restrict the access of a colum of a view to a user and make a difference if that same user comes from ip-address A or ip-address B not sure if you find any RDBMS which is more flexible than stock mysql signature.asc Description: OpenPGP digital signature
Re: users browser caching the screen
fbsd_user wrote: Now I know what I am going to talk about is not directly related to this mysql list, but I am in need of some concept ideas. To set the background. It’s a very common practice in the registration process of a new user to verify the users email address is valid by sending a email to the entered email address with a link in it to a screen that updates the users emailed verified flag in his table record. I have such a process. Once a week I review my apache activity log and I noticed a lot of log records for the file that process the link to update the users email verified flag, (over 1500 from same ip address). To me this looked like an attack to break into my web application. Research and testing indicates that the screen is Cached by the users browser and he is changing the passed link info repeatedly in effort to break in. This screen is the only one that does not have session security control because it’s launched from the verify email I sent him. Now my registration sign up screen has a Captcha Security Code Random-Noisy-Image and part of that is a string of headers to the browser to stop caching. They look like this. // send several headers to make sure the image is not cached // taken directly from the PHP Manual // Date in the past header(Expires: Mon, 26 Jul 1997 05:00:00 GMT); // always modified header(Last-Modified: . gmdate(D, d M Y H:i:s) . GMT); // HTTP/1.1 header(Cache-Control: no-store, no-cache, must-revalidate); header(Cache-Control: post-check=0, pre-check=0, false); // HTTP/1.0 header(Pragma: no-cache); Now my desire is to somehow have the screen that is the target of the email link to issue these headers before displaying its html code so the user can not any longer run a script against this screen trying to break in. Is this possible and if so how. Is this kind of attack happening to anyone else? Thanks for any help you can offer. You have no way of knowing it the user is running a browser at all. He could have grabbed the page once, and run a script that pretends to be a browser. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: users browser caching the screen
I guess you are saying that trying to have my php script send the users browser html headers to stop caching is not really going to solve my problem. I did put a block rule in my firewall for the attackers ip address and that stopped the attach from recurring. But to make sure it don't happen again I am adding a Captcha Security Code Random-Noisy-Images to the screen. This uses a randomly generated graphic image to stymie auto-submission scripts. -Original Message- From: gerald_clark [mailto:[EMAIL PROTECTED] Sent: Monday, March 13, 2006 12:13 PM To: [EMAIL PROTECTED] Cc: Mysql Subject: Re: users browser caching the screen fbsd_user wrote: Now I know what I am going to talk about is not directly related to this mysql list, but I am in need of some concept ideas. To set the background. It’s a very common practice in the registration process of a new user to verify the users email address is valid by sending a email to the entered email address with a link in it to a screen that updates the users emailed verified flag in his table record. I have such a process. Once a week I review my apache activity log and I noticed a lot of log records for the file that process the link to update the users email verified flag, (over 1500 from same ip address). To me this looked like an attack to break into my web application. Research and testing indicates that the screen is Cached by the users browser and he is changing the passed link info repeatedly in effort to break in. This screen is the only one that does not have session security control because it’s launched from the verify email I sent him. Now my registration sign up screen has a Captcha Security Code Random-Noisy-Image and part of that is a string of headers to the browser to stop caching. They look like this. // send several headers to make sure the image is not cached // taken directly from the PHP Manual // Date in the past header(Expires: Mon, 26 Jul 1997 05:00:00 GMT); // always modified header(Last-Modified: . gmdate(D, d M Y H:i:s) . GMT); // HTTP/1.1 header(Cache-Control: no-store, no-cache, must-revalidate); header(Cache-Control: post-check=0, pre-check=0, false); // HTTP/1.0 header(Pragma: no-cache); Now my desire is to somehow have the screen that is the target of the email link to issue these headers before displaying its html code so the user can not any longer run a script against this screen trying to break in. Is this possible and if so how. Is this kind of attack happening to anyone else? Thanks for any help you can offer. You have no way of knowing it the user is running a browser at all. He could have grabbed the page once, and run a script that pretends to be a browser. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: users are always the last to know :-)
Hi Walt, On Sat, 2005-10-08 at 13:19, Walt Weaver wrote: Well, forgive me for being a bit skeptical and cynical but this sounds like spin to me. As a 17-year Oracle DBA I have never seen Oracle do anything that can remotely be called benevolent. Larry Ellison buys companies, guts them, chews them up and spits them in the gutter. I doubt he'll ever buy a company just because he's caught up in the groovy sunshine world that's Open Source. And, as an employee of a company that's very, very heavily committed to MySQL (we're just about completely moved off of Oracle and are using InnoDB) this whole thing leaves us rather worried. You'll forgive me for not joining in the speculations. Please don't misread our lack of expressive detail as us sitting on our hands: either in the past, presently, or at any point in the future. Even for an open source company, operating in the real world means that not everything is always public. I do appreciate that you have questions beyond the answers given so far. At this precise moment in time, I hope you can run on the trust you have given MySQL and its developers upto now? Thanks. Regards, Arjen. On 10/7/05, Arjen Lentz [EMAIL PROTECTED] wrote: Hi Hassan, On Sat, 2005-10-08 at 08:25, Hassan Schroeder wrote: FYI, from the Silicon Valley Business Journal: See Kaj's response in the announce list (http://lists.mysql.com/announce/322) and the official MySQL AB response (http://www.mysql.com/news-and-events/news/article_968.html). Other related posts on http://www.planetmysql.org/ Have a nice weekend! Regards, Arjen. Oracle buys Finnish open source company Oracle Corp. said Friday it has bought Innobase OY, a software company based in Finland, for an undisclosed price. Innobase makes open source database software. Its product, InnoDB, runs on the MySQL database system, also an open source software system. Oracle said it has long supported open source software, which is freely available to anyone who wants to build on it or improve it, and said it plans to add more to open source systems in the future. Redwood Shores-based Oracle (NASDAQ: ORCL) said it plans to negotiate to extend the deal between Innobase and MySQL when it needs to be renewed next year. http://www.bizjournals.com/sanjose/stories/2005/10/03/daily52.html?hbx=e_du -- Arjen Lentz, Community Relations Manager MySQL AB, www.mysql.com MySQL Users Conference 2006 (Santa Clara CA, 24-27 April) Call for Papers deadline 7 Nov 2005: http://www.mysqluc.com/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: users are always the last to know :-)
Interesting On 10/7/05, Hassan Schroeder [EMAIL PROTECTED] wrote: FYI, from the Silicon Valley Business Journal: Oracle buys Finnish open source company Oracle Corp. said Friday it has bought Innobase OY, a software company based in Finland, for an undisclosed price. Innobase makes open source database software. Its product, InnoDB, runs on the MySQL database system, also an open source software system. Oracle said it has long supported open source software, which is freely available to anyone who wants to build on it or improve it, and said it plans to add more to open source systems in the future. Redwood Shores-based Oracle (NASDAQ: ORCL) said it plans to negotiate to extend the deal between Innobase and MySQL when it needs to be renewed next year. http://www.bizjournals.com/sanjose/stories/2005/10/03/daily52.html?hbx=e_du -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: users are always the last to know :-)
Hi Hassan, On Sat, 2005-10-08 at 08:25, Hassan Schroeder wrote: FYI, from the Silicon Valley Business Journal: See Kaj's response in the announce list (http://lists.mysql.com/announce/322) and the official MySQL AB response (http://www.mysql.com/news-and-events/news/article_968.html). Other related posts on http://www.planetmysql.org/ Have a nice weekend! Regards, Arjen. Oracle buys Finnish open source company Oracle Corp. said Friday it has bought Innobase OY, a software company based in Finland, for an undisclosed price. Innobase makes open source database software. Its product, InnoDB, runs on the MySQL database system, also an open source software system. Oracle said it has long supported open source software, which is freely available to anyone who wants to build on it or improve it, and said it plans to add more to open source systems in the future. Redwood Shores-based Oracle (NASDAQ: ORCL) said it plans to negotiate to extend the deal between Innobase and MySQL when it needs to be renewed next year. http://www.bizjournals.com/sanjose/stories/2005/10/03/daily52.html?hbx=e_du -- Arjen Lentz, Community Relations Manager MySQL AB, www.mysql.com MySQL Users Conference 2006 (Santa Clara CA, 24-27 April) Call for Papers deadline 7 Nov 2005: http://www.mysqluc.com/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: users are always the last to know :-)
Well, forgive me for being a bit skeptical and cynical but this sounds like spin to me. As a 17-year Oracle DBA I have never seen Oracle do anything that can remotely be called benevolent. Larry Ellison buys companies, guts them, chews them up and spits them in the gutter. I doubt he'll ever buy a company just because he's caught up in the groovy sunshine world that's Open Source. And, as an employee of a company that's very, very heavily committed to MySQL (we're just about completely moved off of Oracle and are using InnoDB) this whole thing leaves us rather worried. Thanks, --Walt Weaver Bozeman, Montana On 10/7/05, Arjen Lentz [EMAIL PROTECTED] wrote: Hi Hassan, On Sat, 2005-10-08 at 08:25, Hassan Schroeder wrote: FYI, from the Silicon Valley Business Journal: See Kaj's response in the announce list (http://lists.mysql.com/announce/322) and the official MySQL AB response (http://www.mysql.com/news-and-events/news/article_968.html). Other related posts on http://www.planetmysql.org/ Have a nice weekend! Regards, Arjen. Oracle buys Finnish open source company Oracle Corp. said Friday it has bought Innobase OY, a software company based in Finland, for an undisclosed price. Innobase makes open source database software. Its product, InnoDB, runs on the MySQL database system, also an open source software system. Oracle said it has long supported open source software, which is freely available to anyone who wants to build on it or improve it, and said it plans to add more to open source systems in the future. Redwood Shores-based Oracle (NASDAQ: ORCL) said it plans to negotiate to extend the deal between Innobase and MySQL when it needs to be renewed next year. http://www.bizjournals.com/sanjose/stories/2005/10/03/daily52.html?hbx=e_du -- Arjen Lentz, Community Relations Manager MySQL AB, www.mysql.com http://www.mysql.com MySQL Users Conference 2006 (Santa Clara CA, 24-27 April) Call for Papers deadline 7 Nov 2005: http://www.mysqluc.com/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
Re: users are always the last to know :-)
Walt Weaver wrote: Well, forgive me for being a bit skeptical and cynical but this sounds like spin to me. As a 17-year Oracle DBA I have never seen Oracle do anything that can remotely be called benevolent. Larry Ellison buys companies, guts them, chews them up and spits them in the gutter. I doubt he'll ever buy a company just because he's caught up in the groovy sunshine world that's Open Source. And, as an employee of a company that's very, very heavily committed to MySQL (we're just about completely moved off of Oracle and are using InnoDB) this whole thing leaves us rather worried. Remember that InnoDB is open source and GPLed. That means that even if Oracle were to start doing something evil, there's nothing stopping you, the MySQL team, or anyone else starting a fork that remained open source and carried on from the last available open source version. I don't personally think there's anything to worry about. -- Jasper Bryant-Greene Freelance web developer http://jasper.bryant-greene.name/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: users are always the last to know :-)
On Oct 7, 2005, at 11:46 PM, Jasper Bryant-Greene wrote: Walt Weaver wrote: Well, forgive me for being a bit skeptical and cynical but this sounds like spin to me. As a 17-year Oracle DBA I have never seen Oracle do anything that can remotely be called benevolent. Larry Ellison buys companies, guts them, chews them up and spits them in the gutter. I doubt he'll ever buy a company just because he's caught up in the groovy sunshine world that's Open Source. And, as an employee of a company that's very, very heavily committed to MySQL (we're just about completely moved off of Oracle and are using InnoDB) this whole thing leaves us rather worried. Remember that InnoDB is open source and GPLed. That means that even if Oracle were to start doing something evil, there's nothing stopping you, the MySQL team, or anyone else starting a fork that remained open source and carried on from the last available open source version. Of course that's technically true, but is it realistic? Are there non-MySQL AB forks of either myisam or innodb? It just doesn't seem that it's as easy for outsiders to pick up and run with this as it is with other OSS projects. Even within MySQL AB, how deep is the InnoDB knowledge? We have paid support, and when it gets to an InnoDB specific issue the question goes to an InnoDB OY employee fairly quickly. Before we even discuss someone forking InnoDB, would MySQL AB be able to support current InnoDB using customers if Oracle were to make Heikki et. al. unavailable? This is very worrisome to people whose business rides on InnoDB/MySQL and can't be covered with PR and spin. It would be nice to hear that MySQL has worked out the inclusion of whatever InnoDB becomes beyond the current contract expiration next year, but at a minimum they have to explain how they will support current InnoDB use when the people that largely did it aren't necessarily available. --Ware -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: [users@httpd] November 2, 2004
GH wrote: Greetings: This is just a friendly reminder that if you are registered in the United States to VOTE on November 2, 2004 (TOMORROW) Need to know where you vote? Please see the attached file (it is an image) that contains some information Do we care? Realy? Unlikely. Maybe you should send your 'useful' info on a national mailinglist only. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: [users@httpd] apache/mysql errors....
bruce wrote: We have the following setup in our httpd.conf file. We've tried to give what's related to the issue. We're trying to set up a virtual host for a test project. The behavior that we're seeing is that we can type: http://foo.com but the url that gets displayed is http://12.x.x.x where 12.x.x.x is the address of the external router (foo.com is the internal IP of the Internal machine. The machine is behind a linksys router.) The following information is from the httpd.conf file: Listen 80 ServerName 192.168.1.52 UseCanonicalName on Use OFF: http://httpd.apache.org/docs-2.0/mod/core.html#usecanonicalname With UseCanonicalName Off Apache will form self-referential URLs using the hostname and port supplied by the client if any are supplied (otherwise it will use the canonical name, as defined above). These values are the same that are used to implement name based virtual hosts, and are available with the same clients. The CGI variables SERVER_NAME and SERVER_PORT will be constructed from the client supplied values as well. AFAIK the request to foo.com gets translated to ServerName by Apache -only on manipulated requests or through scripts-. ServerName, being an IP, is properly translated by your router to enable public access. Bar in mind though, if more than one virtual host share a single IP (and port), the incoming request is non-conclusive ... HansH -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: [users@httpd] Re: apache/mysql errors....
- Original Message - From: Jon Drukman [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, August 20, 2003 9:28 PM Subject: [EMAIL PROTECTED] Re: apache/mysql errors grant select on *.* to [EMAIL PROTECTED] identified by 'yourpasswordhere'; [...] you don't need to restart or anything. the user/pw combo should be instantly available. But I believe it requires the FLUSH PRIVILEGES; to make mysql update the privilege modification of the GRANT . Leif -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Users and their priveleges in a mySQL Database
* Andi S. Giri Can mysql have different tables for different users ? Yes. Say user 'TEST1' creates a table called 'XYZ' and also user 'TEST2' creates the same table name 'XYZ' Is it allowed ? Yes, if you give each user his own database. If it is, can this two tables can be accesed by a third user say 'Superuser' provided the priveleges are given by 'TEST1' and 'TEST2' ? Yes, except the privileges can not be given by each user, it must be given by the mysql root user. -- Roger - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
re: Users and their priveleges in a mySQL Database
Andi, Tuesday, December 03, 2002, 8:52:33 AM, you wrote: ASG Can mysql have different tables for different users ? Say user 'TEST1' ASG creates a table called 'XYZ' and also user 'TEST2' creates the same table ASG name 'XYZ' ASG Is it allowed ? Yes. Table names must be unique within a database. ASG If it is, can this two tables can be accesed by a third user ASG say 'Superuser' provided the priveleges are given by 'TEST1' and 'TEST2' ? Yes. Read how privilege system in MySQL works: http://www.mysql.com/doc/en/Privileges.html http://www.mysql.com/doc/en/GRANT.html ASG This is similar to schema objects (USER_OBJECTS) in ORACLE. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Victoria Reznichenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
re: Users and Databases
Ryan, Thursday, November 28, 2002, 9:56:00 PM, you wrote: RM Please pardon my extreme case of the NEWBs on this but I need some help please. RM Ok I just purchased a book to hopefully clear things up for me, but to no RM avail. So this is my dilemma: I want to know about MySQL administration, RM specifically the user management portion of the admining. I want to be able to RM allow users to create whatever DBs they need. One DB for my Multi-media RM collection, one for an address book, one DB for links for a web site. Whatever RM the case may be! But it seems like I can't give a user the option to create RM and/or delete any DBs that only user X made. So I the admin would have to RM create each DB and assign appropriate privileges to appropriate users? RM So to sum up my situation into a question: Is it possible for me to give a user RM the ability to create and/or delete only their DBs? Only with MySQL - nope. RM Or do I have to make the DB RM for them and then Grant appropriate privileges for that user to that DB? It's much easier.. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Egor Egorov / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users who can access a database
On Thu, 10 Oct 2002, Anil Garg wrote: Date: Thu, 10 Oct 2002 13:38:52 -0400 From: Anil Garg [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: users who can access a database hi, Please checkout the GRANT command. In earlier versions of mysql you had to put information into the mysql.Users and mysql.Database tables and then reload the permissions tables. Is there some place where i can define the users who can access the database. If yes..plz help thanx and regards anil sql,query - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php Sincerely, William Mussatto, Senior Systems Engineer CyberStrategies, Inc ph. 909-920-9154 ext. 27 - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re users in mysql
I have set up mysql under redhat 7.3 and imported the database from mysql
running on windows.
I have the root user running using passwords, but i cannot get the other
users to log on even thogh the passwords shoudl have been carrid across with
the import.
I have tried to reset the user passwords but still cannot get a logon.
For exmple if i log on and change a user password with:
GRANT INSERT ON stamps.customers TO reguser@'%'
IDENTIFIED BY 'regpassword';
should let me log on as
mysql -D stamps -u reguser -pregpassword
I get the error message:
ERROR 1045 Access denied for user 'reguser@localhost' (Using password = YES)
I have tried changing the password with
update mysql.user set password = PASSWORD('regpassword') and this does not
help
Can anyone suggest what I need todo?
Do I need to drop the users and run the full set of grant scripts again?
Regards
Peter Goggin
-
Before posting, please check:
http://www.mysql.com/manual.php (the manual)
http://lists.mysql.com/ (the list archive)
To request this thread, e-mail [EMAIL PROTECTED]
To unsubscribe, e-mail [EMAIL PROTECTED]
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users Permission Oddity
At 20:17 -0700 8/28/02, neal wrote: Here's an odd one. I am connecting via JDBC using an account that apparently has no permissions granted to it ... even select_priv (straight Ns across the table). And yet ... I can do select statements with it ... no problem. How could that be? Probably because you're being validated as a different user than you think. Is is possible this could be related to the previous issue wherein I was able to connect using an account bob@% where a password was specified int he account, even though I provided no password while logging in? I should note that I am using MySQL 4.0.1 ... perhaps this explains these issues Not likely. Thanks. Neal - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users and db visibility
on 8/4/02 3:13 AM, Hussein Morsy, typed: how can i make MySQL show only what db are available to the user? i.e., when a user logs in from a terminal application and types: 'show databases;' mysqld --safe-show-database or in my.cnf: safe-show-database With this option, the SHOW DATABASES command returns only those databases for which the user has some kind of privilege. In 4.0.2 this option is default enabled. thanks. i just searched: http://www.mysql.com/doc/en/index.html for my.cnf and got no returns. i searched my system for it and couldn't find it. can you tell me something about it, like maybe where it could be? i'm using MySQL 3.23.51.thanks in advance, Lloyd - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users and db visibility
how can i make MySQL show only what db are available to the user? i.e., when a user logs in from a terminal application and types: 'show databases;' mysqld --safe-show-database or in my.cnf: safe-show-database With this option, the SHOW DATABASES command returns only those databases for which the user has some kind of privilege. In 4.0.2 this option is default enabled. - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
RE: users and db visibility
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, August 04, 2002 3:17 AM To: Hussein Morsy; MySQL List Subject: Re: users and db visibility on 8/4/02 3:13 AM, Hussein Morsy, typed: how can i make MySQL show only what db are available to the user? i.e., when a user logs in from a terminal application and types: 'show databases;' mysqld --safe-show-database or in my.cnf: safe-show-database With this option, the SHOW DATABASES command returns only those databases for which the user has some kind of privilege. In 4.0.2 this option is default enabled. thanks. i just searched: http://www.mysql.com/doc/en/index.html for my.cnf and got no returns. i searched my system for it and couldn't find it. can you tell me something about it, like maybe where it could be? Yes, well, a quick 30 seconds worth of work: (1) go to mysql.com (2) click on Search (3) Type in --safe-show-database in the box (4) click on Search1 Volia! For the truly lazy, here's a link to get you started: http://www.mysql.com/doc/en/Command-line_options.html -- Ed Carp, N7EKG http://www.pobox.com/~erc 214/986-5870 Director, Software Development Escapade Server-Side Scripting Engine Development Team Pensacola - Dallas - London - Dresden http://www.squishedmosquito.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users privileges
tlr7425, Monday, July 15, 2002, 3:38:32 AM, you wrote: t I've read the Adding New Users Section and the initial and post setup t section of the manual, but I still need some clarification: t After an install and a working MySQL I see it like this (Mac OS XS): t there are 3 users: t mysql - created manually after installing MySQL and has a password t root - a mysql root user whose password has been set t me - myself, using my machine t (I have also run chown on mysql to user mysql.) t What privileges need to be set and at what levels? First of all I suggest you to set up password for your user 'root'. As to privileges for users it depends on their tasks ... Check the following link, it may help you: http://www.mysql.com/doc/P/r/Privileges_provided.html You can read here about privileges provided by MySQL. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Victoria Reznichenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Users
Hi! A little effort please http://www.mysql.com/doc/A/d/Adding_users.html and http://www.mysql.com/doc/D/e/Default_privileges.html EG Hi all How do i create users in mysql.. After installing i just start mysql and connect to it.. Whats the default username and password it uses.. -Arul - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Users
Grant select, insert, delete ... on db.tb || db || * to username@host identified by password Alexander -- Mensagem Original -- Hi! A little effort please http://www.mysql.com/doc/A/d/Adding_users.html and http://www.mysql.com/doc/D/e/Default_privileges.html EG Hi all How do i create users in mysql.. After installing i just start mysql and connect to it.. Whats the default username and password it uses.. -Arul - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php A busca mais veloz e precisa da internet. Acesse agora: http://www.zoom.com.br. - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Users
Arul, Thursday, June 06, 2002, 1:35:26 PM, you wrote: A How do i create users in mysql.. A After installing i just start mysql and connect to it.. A Whats the default username and password it uses.. Check our manual: http://www.mysql.com/doc/A/d/Adding_users.html http://www.mysql.com/doc/G/R/GRANT.html A -Arul -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Victoria Reznichenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users@localhost problems
Alex Kirk writes: I'm sure this question has been answered a million times, so please pardon it again. If there's an appropriate FAQ, please point me to it. My problem is fairly simple: I've set up a couple of users of the form username@localhost. When I run a 'SELECT * FROM USER;' in mysql, they show up, with the appropriate values in the host and user columns. When I attempt to grant priviliges to them, though, I get this error: mysql grant all on testdb.* to alex@localhost; ERROR 1133: Can't find any matching row in the user table Like I said, though, I *know* the user is in the user table, as shown by 'SELECT HOST, USER FROM USER;': +---++ | host | user | +---++ | localhost || | localhost | alex | | localhost | apache | | localhost | root | | www || | www | alex | | www | root | +---++ 7 rows in set (0.00 sec) Also, if I try to connect to any databases as a non-root user, MySQL sees me solely as '@localhost' -- i.e., it doesn't see my UNIX user name. What's up with that? Thanks in advance. Alex Kirk Hi! The above is indeed weird. What version of MySQL are you using and is it our binary ?? Also check the integrity in mysql database with CHECK TABLE. The fact that MySQL can't see your UNIX username is probably a consequence of the bad build. -- Regards, __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Mr. Sinisa Milivojevic [EMAIL PROTECTED] / /|_/ / // /\ \/ /_/ / /__ MySQL AB, Fulltime Developer /_/ /_/\_, /___/\___\_\___/ Larnaca, Cyprus ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users@localhost problems
What version of MySQL are you using and is it our binary ?? It's 3.23.37. I built it from source on my OpenBSD-2.9 box (i386 architecture). It didn't appear to have any trouble when I built it. Also check the integrity in mysql database with CHECK TABLE. mysql check table user; ++---+--+--+ | Table | Op| Msg_type | Msg_text | ++---+--+--+ | mysql.user | check | status | OK | ++---+--+--+ 1 row in set (0.05 sec) All the other tables in MySQL show up with equivalent resutls. Hmmm...that seems OK to me...but then again, I can't really say much, since I don't really know. Any further tests I should run? Thanks, Alex Kirk - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users@localhost problems
Alex Kirk writes: What version of MySQL are you using and is it our binary ?? It's 3.23.37. I built it from source on my OpenBSD-2.9 box (i386 architecture). It didn't appear to have any trouble when I built it. Also check the integrity in mysql database with CHECK TABLE. mysql check table user; ++---+--+--+ | Table | Op| Msg_type | Msg_text | ++---+--+--+ | mysql.user | check | status | OK | ++---+--+--+ 1 row in set (0.05 sec) All the other tables in MySQL show up with equivalent resutls. Hmmm...that seems OK to me...but then again, I can't really say much, since I don't really know. Any further tests I should run? Thanks, Alex Kirk Looks like an error in compilation. Use gcc 2.95.2 and build it again as per instructions in our manual, section on OpenBSD. -- Regards, __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Mr. Sinisa Milivojevic [EMAIL PROTECTED] / /|_/ / // /\ \/ /_/ / /__ MySQL AB, Fulltime Developer /_/ /_/\_, /___/\___\_\___/ Larnaca, Cyprus ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users in MySQL
Sent on Jul 3 by Daniel Aderhold to [EMAIL PROTECTED] aderho Can anyone give the adress of another manual of MySQL (not from mysql.com). Why is that ??? The manually you're not willing to use is indeed the *official* manual, which also means the more comprehensive one you can think of. If you don't find that comprehensive, there're none (I believe) to please you Sorry -- sherzod_ruzmetov (sherzodR) email: [EMAIL PROTECTED] I wasn't recommending that we make the links for them, only provide them with the tools to do so if they want to take the gamble (or the gambol). -- Larry Wall in [EMAIL PROTECTED] - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: users and passwords...users and passwords...
/mysql/bin/mysql_setpermission can also be handy
but if you do stuff manually don't forget to do a
/mysql/bin/mysqladmin flush-privileges
a bit of manual reading probably wouldn't go amiss either :-)
On Monday 07 May 2001 07:54, Daniel Goldin \(E-mail\) wrote:
I've had similiatr problems setting passwords on my redhat box.
Tried % mysql -p -u root mysql:
Got error message:
Access denied for user root@localhost (using password:YES)
Help, please!!!
-Original Message-
From: Paul DuBois [mailto:[EMAIL PROTECTED]]
Sent: Sunday, May 06, 2001 6:36 PM
To: Simon Chan; mysql Mail List
Subject: Re: users and passwords...users and passwords...
At 12:16 PM -0700 5/6/01, Simon Chan wrote:
NEWBIE QUESTION
Hello,
Just installed mysql on a solaris2.7 sparc machine, but I don't seem
to have permission to do
anything! I add a user by typing
useradd username
That creates a UNIX user account, not a MySQL user account. They have
nothing
to do with each other.
To create a MySQL user (and set the password), use the GRANT statement
in the mysql program:
% mysql -p -u root mysql
Then enter the MySQL root user password when prompted and execute your
GRANT statements. See the MySQL Reference Manual for GRANT syntax.
BUT HOW DO I SET THE PASSWORD? Someone suggested doing this:
mysqlinsert into user (host, user, password) values ('localhost',
'myname' password('testpass');
But that doesn't work for me! It gives me the good ol' syntax error
message. I've also tried
this:
mysql insert into user (host, user, password) values ('localhost',
'myname','testpass');
But that gives a message saying that no database selected.
Help!
-
Before posting, please check:
http://www.mysql.com/manual.php (the manual)
http://lists.mysql.com/ (the list archive)
To request this thread, e-mail [EMAIL PROTECTED]
To unsubscribe, e-mail [EMAIL PROTECTED]
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
