"Briggs, Gary" wrote:
>
> I'm trying to lock down some of my mySQL tables, since I accidentally
> deleted on of the tables the other day.
>
> What're the minimum permissions I need to set to make searching possible?
> I'm hoping to have two users:
> udm [which will be used by the indexer process; password breach could be
> used to delete everything], and
> udm_ro [which will be used by the searching process; password breach should
> not be able to do anything at all, except maybe a DOS which I oculd fix
> really quickly]
>
> I see that the read-only user does need create and drop permissions, since
> it uses a temporary table AFAICT.
>
> Is there anything else?
>
I had the same problem writing web appication. MySQL does not support
UNIONs (btw, this is strange, I think that this task is simple enough
for
MySQL guys having what they already can do). So I used temporal table
to emulate union. I had to give create and drop grants for "nobody"
user which actually needs read only access. I think it worths to suggest
MySQL team to add new grant for temporal tables usage.
Tonu, what do you think about that?
___________________________________________
If you want to unsubscribe send "unsubscribe general"
to [EMAIL PROTECTED]
