From: Peter Brawley
Date: June 14 2005 6:27pm
Subject: Re: discuss: user management
List-Archive: http://lists.mysql.com/mysql/185440
Message-Id: <42AF21AB.3030709@earthlink.net>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=======AVGMAIL-42AF21AB6F52======="

--=======AVGMAIL-42AF21AB6F52=======
Content-Type: multipart/alternative; boundary=------------070001030900010807030105

--------------070001030900010807030105
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

Danny

/>1. Giving the user a Single user ID and assign the privileges to that 
user ID
 >2. Create role-bases users and have different people share the same 
user ID
 >for a given role.
 >3. Create multiple user IDs for each role played by each user 
(dannys_arch
 >as an architect, dannys_dev as a developer).
/
#2 has a name (role-based user access, RBAC) and is widely used, but its 
formulation above needs a correction: create roles, and users who can be 
assigned different and possibly multiple roles.

PB

-----

Danny Stolle wrote:

> hi,
>
> i would like to discuss 'user management' in mysql. Working with 
> Oracle you can assign users to roles giving them privileges provided 
> by that role. MySql doesn't have Roles. I have read (Managing and 
> Using MySql, O'Reilly) 3 options on managing users having multiple 
> roles in a MySql environment:
> 1. Giving the user a Single user ID and assign the privileges to that 
> user ID
> 2. Create role-bases users and have different people share the same 
> user ID for a given role.
> 3. Create multiple user IDs for each role played by each user 
> (dannys_arch as an architect, dannys_dev as a developer).
>
> Which of these 3 options is the most preferable one or are there more 
> options which you can use. What are the advantages and disadvantages 
> on working with one of these 3 options? how do you handle hostnames 
> when working with random ip-addresses on your site.
>
> Or just plain simple (or stupid) what are your experiences on user 
> management in a MySql environment.
>
> Best regards,
>
> Danny Stolle
> Netherlands
>

--------------070001030900010807030105
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
Danny<br>
<br>
<i>&gt;1. Giving the user a Single user ID and assign the privileges to
that user ID
<br>
&gt;2. Create role-bases users and have different people share the same
user ID <br>
&gt;for a given role.
<br>
&gt;3. Create multiple user IDs for each role played by each user
(dannys_arch <br>
&gt;as an architect, dannys_dev as a developer).
<br>
</i><br>
#2 has a name (role-based user access, RBAC) and is widely used, but
its formulation above needs a correction: create roles, and users who
can be assigned different and possibly multiple roles.
<br>
<br>
PB<br>
<br>
-----<br>
<br>
Danny Stolle wrote:
<blockquote cite="mid42AF0EF2.2070602@stripped" type="cite">hi,
  <br>
  <br>
i would like to discuss 'user management' in mysql. Working with Oracle
you can assign users to roles giving them privileges provided by that
role. MySql doesn't have Roles. I have read (Managing and Using MySql,
O'Reilly) 3 options on managing users having multiple roles in a MySql
environment:
  <br>
1. Giving the user a Single user ID and assign the privileges to that
user ID
  <br>
2. Create role-bases users and have different people share the same
user ID for a given role.
  <br>
3. Create multiple user IDs for each role played by each user
(dannys_arch as an architect, dannys_dev as a developer).
  <br>
  <br>
Which of these 3 options is the most preferable one or are there more
options which you can use. What are the advantages and disadvantages on
working with one of these 3 options? how do you handle hostnames when
working with random ip-addresses on your site.
  <br>
  <br>
Or just plain simple (or stupid) what are your experiences on user
management in a MySql environment.
  <br>
  <br>
Best regards,
  <br>
  <br>
Danny Stolle
  <br>
Netherlands
  <br>
  <br>
</blockquote>
</body>
</html>

--------------070001030900010807030105--
--=======AVGMAIL-42AF21AB6F52=======
Content-Type: text/plain; x-avg=cert; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Content-Description: "AVG certification"

No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.323 / Virus Database: 267.7.2 - Release Date: 6/14/2005

--=======AVGMAIL-42AF21AB6F52=======--