Markus, Wednesday, August 28, 2002, 3:48:42 PM, you wrote: MR> we are using mysql 3.23... for our webservices.=20 MR> the following question about grant: MR> granting grant option to a user has the consequence, that this user can grant to other users - even if this other user doesn't exist!!
MR> e.g. grant grant option on db.* to somene; It's a wrong syntax. You should use GRANT .. WITH GRANT OPTION; MR> creates a user somene - with no password. MySQL creates new user when in the table 'user' there is no existing user with the same user name and host name. New user doesn't have a password because you don't specify a password in the GRANT statement. MR> but what strikes me most is - it can create a user!!! Yes, if the user has UPDATE privilege on the database 'mysql'. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ ____ __ / |/ /_ __/ __/ __ \/ / Victoria Reznichenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net <___/ www.mysql.com --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
