Giancarlo Corcuera wrote: > > > Chisel Wright wrote: >> On Tue, Jan 20, 2009 at 09:08:31AM -0500, Giancarlo Corcuera wrote: >> >>> Thank you all for your answers: >>> Actually, what I did is to follow the basic instructions from mysql >>> forum but what I was missing is to set the user with full access >>> from any host, which I created later from phpmyadmin. >>> >> >> full access? any host? this makes me nervous (for you and your data) >> >> > lol I know but I'm doing this inside a private lan where we are > building this app with my coleagues :p > of course later on we will have specific accounts with limited access
Your colleagues can be your biggest security problem. It just takes an argument...a jealousy...someone who feels belittled...someone who just wants to take advantage of lax data security. It is real good practice to use least-privilege access to data from the very beginning. Bob _______________________________________________ List: [email protected] Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/[email protected]/ Dev site: http://dev.catalyst.perl.org/
