ps I should take for a secure mysql
installation?
Is it necessary for mysql root to have a password since I'm the only
user on the system and port 3306 is closed?
> With regard to --skip-networking, keep in mind that this blocks TCP/IP DB
> Connections
> This will not block socket-based connectio
hat the mysql users have
passwords.
- Grant
>> I've got a couple security questions for you guys.
>>
>> Is there a way to verify I've set a password for mysql's root?
>>
>> I was previously running mysqld without --skip-networking until I
>>
without flags to tell it otherwise, nmap only scan ports 1-1024,
higher numbered ports would have to be specified via nmap -p 1-5000
but see how much longer it takes.
- michael dykman
On Mon, Nov 29, 2010 at 9:02 AM, Grant wrote:
> I've got a couple security questions for you guys
pe : RolandoLogicWorx
redwa...@logicworks.net
http://www.linkedin.com/in/rolandoedwards
-Original Message-
From: Grant [mailto:emailgr...@gmail.com]
Sent: Monday, November 29, 2010 9:02 AM
To: mysql@lists.mysql.com
Subject: Verifying security
I've got a couple security questions for you
I've got a couple security questions for you guys.
Is there a way to verify I've set a password for mysql's root?
I was previously running mysqld without --skip-networking until I
noticed port: 3306 was referenced in mysqld.err. The strange thing is
'nmap localhost'
MySQL University: Securich - Security Plugin for MySQL
http://forge.mysql.com/wiki/Securich_-_Security_Plugin_for_MySQL
This Thursday (June 10th, 14:00 UTC), Darren Cassar will rerun his
February 25 presentation of Securich - Security Plugin for MySQL.
(Recording of the session failed in February
In infinite wisdom "Jerry Schwartz" wrote:
> Back when this was a day-to-day concern of mine, I used to check CERT's
> website (the section now known as their "Vulnerability Notes Database",
> http://www.kb.cert.org/vuls).
If securing the database is your job, then you really need to drink fr
Back when this was a day-to-day concern of mine, I used to check CERT's
website (the section now known as their "Vulnerability Notes Database",
http://www.kb.cert.org/vuls). Unfortunately, I see that the last entry for
MySQL is from years ago.
Regards,
Jerry Schwartz
Global Information Incorpo
Good Morning Rob-
I agree with you that security is a very serious topic and should be addressed
as such
Please read security alert page listed at tech-resources
http://dev.mysql.com/tech-resources/articles/security_alert.html
I hope this addresses your question,
Martin Gainty
hentication token to the OS)
>
> does this help?
> Martin Gainty
I am explicitly not setting up identity solutions or anything else.
All I want is a page from mysql which lists security issues.and what
versions are effected. I don't think that this is such an insane
thought...
-
email peuvent facilement
être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité
pour le contenu fourni.
> From: wult...@gmail.com
> Date: Mon, 24 May 2010 13:27:52 -0700
> Subject: Re: Security issues
> To: je...@gii.co.jp
> CC: mgai...@hotmail.com; mysql
On Mon, May 24, 2010 at 12:07 PM, Jerry Schwartz wrote:
>>-Original Message-
>>From: Rob Wultsch [mailto:wult...@gmail.com]
>>Sent: Saturday, May 22, 2010 11:52 AM
>>To: Martin Gainty
>>Cc: mysql@lists.mysql.com
>>Subject: Re: Security issues
>>
>-Original Message-
>From: Rob Wultsch [mailto:wult...@gmail.com]
>Sent: Saturday, May 22, 2010 11:52 AM
>To: Martin Gainty
>Cc: mysql@lists.mysql.com
>Subject: Re: Security issues
>
>On Sat, May 22, 2010 at 5:44 AM, Martin Gainty wrote:
>> Good Morning Rob-
You could use CVE, Postgre's security page doesn't seem to sync with their
CVE entries, even though they reference CVE entries on their comprehensive
security page.
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=postgresql
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=mysql
JW
O
On Sat, May 22, 2010 at 5:44 AM, Martin Gainty wrote:
> Good Morning Rob-
>
> one vulnerability (with UDFs)
> http://dev.mysql.com/tech-resources/articles/security_alert.html
>
> a manager considering a enterprise-wide security solution may want
> to consider Oracle I
Good Morning Rob-
one vulnerability (with UDFs)
http://dev.mysql.com/tech-resources/articles/security_alert.html
a manager considering a enterprise-wide security solution may want to consider
Oracle Identity Manager (with Glassfish 3.2)
http://under-linux.org/en/content/oracle-introduces
Given the rather serious recent bug fixes I have been thinking a good
bit about security. Does MySQL AB/Sun/Oracle maintain a page similar
to http://www.postgresql.org/support/security.html which lists
security issues and what releases they effected?
--
Rob Wultsch
wult...@gmail.com
--
MySQL
From: Johan De Meersman
To: Vikram A
Cc: MY SQL Mailing list
Sent: Wed, 28 April, 2010 9:55:38 PM
Subject: Re: My sql Security
Rip out the DB authentication part, and store those credentials in-code, in
some config file or the registry, or some remote mechanism like LDAP.
If your
y login Authentication screen; I request you guide me how can
> handle this.
>
> Thank you
>
> Vikram
>
> --
> *From:* Johan De Meersman
>
> *To:* Vikram A
> *Cc:* MY SQL Mailing list
> *Sent:* Wed, 28 April, 2010 2:10:45 PM
>
>
from the other GUI/connecting tools though they have given a access to db?
Thank you for the information.
Vikram
From: nwood
To: Vikram A
Cc: MY SQL Mailing list
Sent: Wed, 28 April, 2010 3:39:23 PM
Subject: Re: My sql Security
On Wed, 2010-04-28 at 13:58
On Wed, 2010-04-28 at 13:58 +0530, Vikram A wrote:
> Hi all,
> I have some security issues. I would like to have your suggestions/solutions.
>
> I have winserver2003 with mysql 5.1.45. We have client serve application that
> allows multi-login system with various people.
>
&
I'm afraid you can't discern between clients and applications on the MySQL
level. Your application authentication should be separate from the MySQL
one.
On Wed, Apr 28, 2010 at 10:28 AM, Vikram A wrote:
> Hi all,
> I have some security issues. I would like to have your
> su
Hi all,
I have some security issues. I would like to have your suggestions/solutions.
I have winserver2003 with mysql 5.1.45. We have client serve application that
allows multi-login system with various people.
I am getting user name, password for database login when the try to use login
Securich - Security Plugin for MySQL
http://forge.mysql.com/wiki/Securich_-_Security_Plugin_for_MySQL
This Thursday (February 25th, 13:00 UTC - way earlier than usual!),
Darren Cassar will present Securich - Security Plugin for MySQL.
According to Darren, the author of the plugin, "Securich
nario. People usually have the master and
slave in a single network usually, which is protected from the external
access. It is good to have access restrictions to all the users who access
the database and give only access that is required. It is better to have
security from the network level than
sql>
2) Can you advise, what security considerations are to be taken into account
for a master - slave setup?
2) In order to distribute load, how can we make writes on master only and
reads on both? It seems to be, it is something that has to be handled at
script coding, instead of administ
This may be a bit off topic, but useful nonetheless. I've released a web site
dedicated to security issues only, and it has not only useful links but roll
marquees displaying all of the latest patch/threat/virus/vulnerability issues.
It's intended as a "one stop" url for
At 2:51 PM -0500 3/19/08, Brown, Charles wrote:
I inherited a mysql server database. Stuff are not documented. My
question is: Are there any security work-arounds in mysql. I have access
to the cnf file. I need to get in and dump the database. I was told that
the cnf file allows security over
On Wed, Mar 19, 2008 at 3:51 PM, Brown, Charles <[EMAIL PROTECTED]> wrote:
> I inherited a mysql server database. Stuff are not documented. My
> question is: Are there any security work-arounds in mysql. I have access
> to the cnf file. I need to get in and dump the database.
Hi,
On 3/19/08 3:51 PM, "Brown, Charles" <[EMAIL PROTECTED]> wrote:
> I inherited a mysql server database. Stuff are not documented. My
> question is: Are there any security work-arounds in mysql. I have access
> to the cnf file. I need to get in and dump the databa
I inherited a mysql server database. Stuff are not documented. My
question is: Are there any security work-arounds in mysql. I have access
to the cnf file. I need to get in and dump the database. I was told that
the cnf file allows security over rides. Please help
I have tried mysql -uroot. It
mer. That way the
> your
> code would be the same, and easier to handle. It would be easier to manage
> the security at the database level, I suspect. I'd set up a ../inc
> directory
> outside the web server root that would have one file per customer, and
> would
> have
Personally, I think I'd go with one DATABASE per customer. That way the your
code would be the same, and easier to handle. It would be easier to manage
the security at the database level, I suspect. I'd set up a ../inc directory
outside the web server root that would have one file pe
On 8/23/07, Jason Pruim <[EMAIL PROTECTED]> wrote:
>
>
> > b)Terminating TCP connections and ensuring that each PHP script
> > runs to
> > completion, anyway, and that the database isn't left in an
> > indeterminate
> > state due to this.
> >
> > Dave.
>
> What do you mean by "b"? If all the connec
e server so that nobody can connect to the
MySQL
daemon directly from outside the box. It is also a bad idea to
allow the
users to have shell accounts on that box unless you have taken
additional
security precautions (specifically, being sure the MySQL userid/
password
you're using are
ch database for each user.
Should they request a restore, it's becomes an easy thing.
How you answer the three questions I posed should help you decide.
I am starting to lean towards the multiple databases with 1 table
even though it makes more files on my server, I think it gives me the
On Aug 23, 2007, at 11:44 AM, Gary Josack wrote:
I'd never have a separate database for everyone or even a separate
table for everyone. Here's a rough idea of how I'd do it
mysql> CREATE TABLE customer (
-> `custid` INT NOT NULL AUTO_INCREMENT,
-> `lastname` VARCHAR(25) not null,
->
at nobody can connect to the MySQL
daemon directly from outside the box. It is also a bad idea to allow the
users to have shell accounts on that box unless you have taken additional
security precautions (specifically, being sure the MySQL userid/password
you're using are secure from all but th
I'd never have a separate database for everyone or even a separate table
for everyone. Here's a rough idea of how I'd do it
mysql> CREATE TABLE customer (
-> `custid` INT NOT NULL AUTO_INCREMENT,
-> `lastname` VARCHAR(25) not null,
-> `firstname` VARCHAR(25) NOT NULL,
-> PRIMARY KEY(
ginal Message -
From: "Jason Pruim" <[EMAIL PROTECTED]>
To: "MySQL List"
Sent: Thursday, August 23, 2007 10:58:52 AM (GMT-0500) America/New_York
Subject: Database architecture and security
Hi Everyone,
Just had a quick question about a database I'm working on.
Hi Everyone,
Just had a quick question about a database I'm working on.
I am planning on having the database open to customers of mine to
store their mailing addresses on-line, and be able to manage the
records.
Is it safe, to have 1 database with lots of tables? Or am I safer
setting up
I get this everytime I post to the mysql mailing list?
On Jun 11, 2007, at 1:26 PM, <[EMAIL PROTECTED]> wrote:
Subject of the message: Re: Access Denied When Trying to Create
Database
Recipient of the message: "mysql@lists.mysql.com"
--
MySQL General Mailing List
For list archives: http:
is the solution for this, are
there any other level of security that I can provide to this?
Which is the best security technique used in MySQL to store seceret
information.
PS: Even the database admin should not be able to access anybody else's
information
mcrypt is the right way to go.
The sec
encrypted data, since at the very least the programmer needs access to it so it can be presented to
the user.
- Original Message -
From: "Ratheesh K J" <[EMAIL PROTECTED]>
To:
Cc: "Chris" <[EMAIL PROTECTED]>
Sent: Tuesday, May 15, 2007 5:19 AM
Subject:
f the data.
>> Whilst I know that encryption/decryption is the solution for this, are
>> there any other level of security that I can provide to this?
>>
>> Which is the best security technique used in MySQL to store seceret
>> information.
>>
>> PS: Even the databas
Ratheesh K J wrote:
Ok.. Will it be secure if the data is encrypted. mysqldump will show
encrypted data right.
mysqldump will show whatever the database table does - it just grabs
that info and puts it into a file. If it's encrypted in the table,
that's what mysqldump will show.
Actually I
should not be visible/accessible to
any other person but the owner of the data.
Whilst I know that encryption/decryption is the solution for this,
are there any other level of security that I can provide to this?
Which is the best security technique used in MySQL to store seceret
information.
PS
?
- Original Message -
From: "Chris" <[EMAIL PROTECTED]>
To: "Ratheesh K J" <[EMAIL PROTECTED]>
Cc:
Sent: Tuesday, May 15, 2007 2:42 PM
Subject: Re: Data security - help required
Ratheesh K J wrote:
Hello all,
I have a requirement of maintaining some secret i
other level of security that I can provide to this?
Which is the best security technique used in MySQL to store seceret information.
PS: Even the database admin should not be able to access anybody else's
information
Then you're stuffed - *someone* has to be able to see everything so y
Hello,
is it safe to give users in s shared hosting environment the
Create_tmp_table_priv privilege? Are any other privileges granted by
this option? Why does mysql store the temporary tables? What happens if
the connection dies before mysql has deleted the temporary table? Does
you user see
What you are asking for is exactly what DEFINER security does. The
applicxation owner grants appuser the right to execute the procedure,
but not to SELECT from any tables. The procedure is then run with the
security attributes of the definer of the procedure, the application
owner, even though
When creating a stored procedure, you can set the sql security
characteristic to either definer or invoker. As an example, I have a
stored procedure that does a select from a table, and an application user
(appuser) that calls the stored procedure. If the sql security is set to
invoker, then
Hi Adrian,
On 8/25/06, Adrian Greeman <[EMAIL PROTECTED]> wrote:
"The security settings could not be applied to the database because the ..
I am pasting here the text of one of my earlier posts to this list:
I got MySQL 5.0
On Mon, Jun 05, 2006 at 10:16:05PM -0700, Ken Williams wrote:
> Anyone know if 4.0.27 will be fixed for the mysql_real_escape issue?
> (http://lists.mysql.com/announce/364)
>
> 4.1 and 5 have been already, kinda wondering why 4.0 hasn't.
It will not, because 4.0 does not have this bug.
Jim Winst
Anyone know if 4.0.27 will be fixed for the mysql_real_escape issue?
(http://lists.mysql.com/announce/364)
4.1 and 5 have been already, kinda wondering why 4.0 hasn't.
Thanks.
[EMAIL PROTECTED]
__
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the
2006, Ingvar Berg wrote:
> To: [EMAIL PROTECTED]
> From: Ingvar Berg <[EMAIL PROTECTED]>
> Subject: Re: [suse-security] fou4s for 10.1?
>
> Hi,
>
> From my crontab:
> 23 4 * * * /usr/bin/smart upgrade -y --update
>
> /Ingvar
>
> [EMAIL PROTECTED] wrote:
://downloads.mysql.com/archives.php?p=mysql-4.0&v=4.0.27
and mirror sites.
This is a security fix release and bugfix release for the 4.0
production release family.
This MySQL 4.0.27 release includes the patches for recently reported
security vulnerabilities in the MySQL client-server protocol. We w
thank you gleb.
But,the "sql security"d description in the manual is not particular.
I mistaked the concept.
I understand the limit is procedure limit but not database object limit.
So,i believe this concept should more definitude if you add the example in this
part
Hello.
Searching in the manual didn't return me any pages which have
"five-tiered" inside. If you're interested in MySQL security read
this:
http://dev.mysql.com/doc/refman/5.0/en/security.html
http://dev.mysql.com/doc/refman/5.0/en/privilege-system.html
&g
I get a concept about mysql security. It's named "five-tiered access
control".Can you tell me the detail of this concept?
>I refer a question about "sql security" option of create procedure syntax
>at 2005-12. But i can't quite understood with that answer.
>Can you give me a example to describe the effect of set "sql security"
>option ?
CREATE PROCEDURE
...
SQL SECURITY INVOK
Hello.
In my opinion, a good description can be found here:
http://dev.mysql.com/tech-resources/articles/mysql-storedprocedures.html
"wangxu" <[EMAIL PROTECTED]> wrote:
--
For technical support contracts, goto https://order.mysql.com/?ref=ensita
This email is sponsored by Ensita.NET
I refer a question about "sql security" option of create procedure syntax at
2005-12.
But i can't quite understood with that answer.
Can you give me a example to describe the effect of set "sql security" option ?
How "sql security" option restrict privileges?
- Original Message -
From: "Paul DuBois" <[EMAIL PROTECTED]>
To: "wangxu" <[EMAIL PROTECTED]>;
Sent: Wednesday, December 28, 2005 3:21 PM
Subject:Re: how to use "sql security"
> At 1
At 15:17 +0800 12/28/05, wangxu wrote:
User_one create a procdure named "proc" with option "sql security invoker".
User_two only have "execute" privilege in the database that the "proc" in.
But the User_two still call the "proc".
What eff
User_one create a procdure named "proc" with option "sql security invoker".
User_two only have "execute" privilege in the database that the "proc" in.
But the User_two still call the "proc".
What effect do the "sql security" option producing?
Hello everyone'
I'm interesting and working in IT security and have to do some security test.
Sometime there is a oracle DB, sometime, it's about mySQL.
I found a lot a free scripts'n' tools to check the oracle security
level but i' did not find any for mySQL.
I on
If it's a DoS attack then perhaps you should be speaking to your ISP and
getting that resolved rather than trying to work around the problem on
your side of things!
Having said that, you could possibly impose host level restrictions in
MySQL, but that could be a lot of work to modify your exis
Title: Security Question
Hi All --
I have been a member of this list for a while but I actually have a question that I can't answer.
MySQL v4.1.14-nt on Win2k3 Server
I've got someone who is trying to get in, but I have locked it down. Methods used include, but are not limite
[EMAIL PROTECTED] wrote:
MySQL has moved WELL past the 3.23.x lineage and is getting close to
retiring the 4.0.x lineage (it's only a rumor). So I suggest you update
Not completely a rumor; on August 2, Heikki wrote: "As far as I know,
one release of 4.0 will still be built."
Considering th
rsion 3.23.58 downloaded from
> www.mysql.org.
> > In changelog from the documentation say that the release is from
> > september 2003 and the security bug is in March 2005.
> > What can I do ? How mysql provide updates?
> > Thanks!!
> >
> > =
&g
Alejandro <[EMAIL PROTECTED]> wrote on 08/16/2005 03:01:59 PM:
> Hi,
>
> I have installed binary mysql version 3.23.58 downloaded from
www.mysql.org.
> In changelog from the documentation say that the release is from
> september 2003 and the security bug is in March 2005.
Hi,
I have installed binary mysql version 3.23.58 downloaded from www.mysql.org.
In changelog from the documentation say that the release is from
september 2003 and the security bug is in March 2005.
What can I do ? How mysql provide updates?
Thanks!!
=
Security info:
http
Hello.
MySQL doesn't support Windows 98, and it's (Windows 98 certainly) design
isn't enough secure. There're no file system which has support for
file permissions. Upgrade to the fresher Windows (2k, XP,
2003) will allow you to solve this issue by protecting 'mysql' database
from replacemen
First I have to Thank you for creating such a wonderful backend.
Problem Statment : My Operating System is Windows 98. I have set password for
my MySql database. Its working fine.
Following are the databases that i am using in My Data Folder
Employee
Sales
Marketing
"Alan Scott" <[EMAIL PROTECTED]> wrote on 05/20/2005 03:47:55 PM:
> MySQL Server v4.1.x
>
>
>
> Is there a table in any instance of mysql that I write some queries and
> insert/update statement against for moving databases between systems?
>
>
>
> Any assistance would be appreciated.
>
You
MySQL Server v4.1.x
Is there a table in any instance of mysql that I write some queries and
insert/update statement against for moving databases between systems?
Any assistance would be appreciated.
Ideally you would want to encrypt the connection, if only to add
another layer of security. But regardless, there are other steps you
can and should take even before implementing a secure connection
between PHP and MySQL. It's actually a smart idea to separate your
database from the fron
m=
> connecting with PHP
> from remote web server to my MySQL server with unencrypted connection? I'm=
> using phpBB
> forums (residing on one server and using the database on other server) which=
> do not suport
> SSH connections, so I'd like to know if
h do not suport
SSH connections, so I'd like to know if I'm opening a security hole in my system this way?
Well, this is how I understand (and I don't profess to having a thorough
understanding).
There are two aspects of security in a MySQL server, Host and Password,
echnic
connections, so I'd like to know if I'm opening a security hole in my
system this way?
--
"Znam, kaljavo ordenje na mom kaputu je..."
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Hi
i am searching the date of the end of support for the different versions
of mysql
where can i find them?
thx
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Hi,
i've found a security flaw on mysql server for windows,
but i'm not sure that the exploitation is possible in a
real life condition. This bug allows an authenticaded user
to cause the service to fail.
In order to exploit this vulnerability, an user must own
well-defined privileges
following message contains practical information about how to
protect your system.
1. What is the UDF Worm?
The UDF Worm is self-propagating code that is finding MySQL servers
running on Microsoft Windows with poor firewall and password security.
This worm does not exploit any bugs in MySQL. It
Howdy,
I'm looking for ways to better enforce user password security through
MySQL. Currently, it does not appear that there are any restrictions on
minimum length, password expiration times or strong password checking.
Other than educating the users directly, is there a way to enforce a
conclusion that I am hacking away at something I do not fully understand
and that I cannot guaranty that the end result will have the security I
claim.
Is this possible in MySQL?
Does anyone know if it cab be performed with other RDBMS?
How many users do you have? If fewer than 10, why not just create
arked as excluded from the "global access option".
But your suggestion of removing the "root" user would solve my problem but
increase administration?.
/jonas
-Original Message-
From: Sergei Golubchik [mailto:[EMAIL PROTECTED]
Sent: den 18 november 2004 14:29
To: Jonas Ladenf
Hi!
On Nov 18, Jonas Ladenfors wrote:
> Hello, I am in the position where I need row level user access, this is
> crucial in my current project. I know this has been discussed before and the
> answer has been "use views when they become availble". But views would still
> allow the "root" user acce
erID
AND l.groupID = g.groupID
someone with root access to the database and access to the software
sourcecode would still be able to gain access, but it is an extra layer of
security.
Peter
> -Original Message-
> From: Jonas Ladenfors [mailto:[EMAIL PROTECTED]
> Sent: 18 Nov
On Thu, 18 Nov 2004 13:07:11 +0100, Jonas Ladenfors wrote:
>
> Anyway I was given a link by Mark Leith (thanks!) on Oracle row level access
> that seems interesting.
>
> Here it is (not MySQL but the "mind-work" might be interesting).
> http://www.securityfocus.com/infocus/1743
It does not meet
Yup, you are absolutly correct but my application runs in a closed
enviroment and our average users does not have sniffing/debugging knowledge.
So this might be something I could live without. BUT this is something which
touches on what I said before. That creating a "good" security s
Well, This is a road I would like to avoid. We have several different
applications fetching data from our MySQL system and constructing a
application security layer is both a lot of work and have to be cusomized
for some of the different applications. Some applications is not constructed
by me and
On Thu, 18 Nov 2004 10:45:37 +0100, Jonas Ladenfors wrote:
> Hello, I am in the position where I need row level user access, this is
> crucial in my current project. I know this has been discussed before and the
> answer has been "use views when they become availble". But views would still
> allow
Hi,
I think Peter's suggesting you implement that security model in your
application, rather than in the database server. Apart from probably
not supporting such a security model, it's easier to audit user
activity if you are controlling the security model.
Cheers,
Luke Venediger.
age-
> From: Jonas Ladenfors [mailto:[EMAIL PROTECTED]
> Sent: 18 November 2004 10:19
> To: 'Peter Lovatt'; 'Mysql (E-mail)'
> Subject: RE: Row level security requirements, can I still use MySQL?
>
>
> Yeah you are correct locking is something else I actu
> Sent: 18 November 2004 10:19
> To: 'Peter Lovatt'; 'Mysql (E-mail)'
> Subject: RE: Row level security requirements, can I still use MySQL?
>
>
> Yeah you are correct locking is something else I actually meant was
> restricted access.
>
> If I understa
-Original Message-
From: Peter Lovatt [mailto:[EMAIL PROTECTED]
Sent: den 18 november 2004 11:03
To: Jonas Ladenfors; Mysql (E-mail)
Subject: RE: Row level security requirements, can I still use MySQL?
Hi
What about encrypting the data using a password that is specific to the
user. That way only
nal Message-
> From: Jonas Ladenfors [mailto:[EMAIL PROTECTED]
> Sent: 18 November 2004 09:46
> To: Mysql (E-mail)
> Subject: Row level security requirements, can I still use MySQL?
>
>
> Hello, I am in the position where I need row level user access, this is
> crucial in
t something I do not fully understand
and that I cannot guaranty that the end result will have the security I
claim.
Is this possible in MySQL?
Does anyone know if it cab be performed with other RDBMS?
Regards
/Jonas
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/
s to one database(one directory). They
> will work normally. I don't know my operation is correct or not. And I
> want to get more suggestions about mysql security, more details
> better.
>
> Look forward to hearing from you, thanks lot.
To ask a correct question you should know h
1 - 100 of 420 matches
Mail list logo
