I have a db and a user with a pwd is allowed to access it.
If my user and pwd is incorrect my php scripts can not
access the db, which is what I expect.
I colleague of mine just went into Mysql db using OBDC connection
using microsoft Data source tool(I do not know much about microsoft)
and he was able to access the Mysql db.
I even went ahead and changed the password and did not
tell him to what and he was still able to access Mysql db.
He even make a connection but entering a bunch of characters.
How is this possible?
The database has only 2 user that are allow to access the db
meaning there are only 2 entries in the user table of the Mysql db
one of them being root.