Yes, you make sense. But when you go in to access your bank account, you are not directly accessing the database. The web application is opening the database and only returning rows in the table that pertain to you. The web application can read all the rows; your user name has *no* read or write permissions to the database: the web application connects via its own username, and selects your account information from the database.
So, in other words, you need to keep a list of users separate from the list of MySQL users. The mysql database controls which username/passwords can connect to the database. Your user list would contain users which can log in to your system. j----- k----- On Wednesday 10 March 2004 01:47 pm, Maru, Mulugeta wrote: > When I go online to access my bank account I only see transactions pertain > to my account only. I think when ever I make a transaction the database > records my account number in the transaction table. When I log-in using my > account number and password the system checks whether it is correct or not > and run another query to get all transaction that match my account number. > > Do I make sense? > > -----Original Message----- > From: Joshua J. Kugler [mailto:[EMAIL PROTECTED] > Sent: Wednesday, March 10, 2004 5:34 PM > To: Mulugeta Maru; MySQL > Subject: Re: Security > > > Only being able to see certain rows is not a function of MySQL, it is a > function of the application you write for the user to access the database. > If a user has permission to read a table, they can read all rows. It is up > to your application to make sure they are only seeing rows that apply to > them. > > j----- k----- > > On Tuesday 09 March 2004 05:57 pm, Mulugeta Maru wrote: > > Thank you for the kind response. May be I did not clearly ask the > > question. The user table in mysql database is used to set-up a user and > > password. Once I set-up my tables (customer, customer orders, customer > > order details, etc) in say abc database what will I have to do to make > > sure when customer A logs in to the database can only see his/her > > account, orders, order details without getting access to other customer > > accounts. > > -- > Joshua J. Kugler > Fairbanks, Alaska > Computer Consultant--Systems Designer > .--- --- ... .... ..- .- -.- ..- --. .-.. . .-. > [EMAIL PROTECTED] > ICQ#:13706295 > Every knee shall bow, and every tongue confess, in heaven, on earth, and > under the earth, that Jesus Christ is LORD -- Count on it! > > > -- > MySQL General Mailing List > For list archives: http://lists.mysql.com/mysql > To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] > > VisionTV proudly celebrates 15 years as Canada's multi-faith television > network. -- Joshua J. Kugler Fairbanks, Alaska Computer Consultant--Systems Designer .--- --- ... .... ..- .- -.- ..- --. .-.. . .-. [EMAIL PROTECTED] ICQ#:13706295 Every knee shall bow, and every tongue confess, in heaven, on earth, and under the earth, that Jesus Christ is LORD -- Count on it! -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
