List:General Discussion« Previous MessageNext Message »
From:John Daisley Date:June 3 2011 10:24am
Subject:Re: Allowing all users to access a specified database
View as plain text  
The reason

*GRANT SELECT, INSERT, UPDATE, DELETE ON mydyb TO '%'@'%';*
*
*
does not work is because that command would be suicidal in terms of
security.

If you are hosting a large number of ecommerce sites and granting any user
access to those databases then you would want security to be far tighter.
Allowing that sort of access is about as secure as publishing the data on
facebook.

What version of MySQL are you using?


On 3 June 2011 11:03, Mark Goodge <mark@stripped> wrote:

> Hi,
>
> I have a database server with multiple users and multiple databases. I have
> a situation where I want to allow any user to connect to a specified
> database.
>
> Unfortunately, the documentation has this to say:
>
> "MySQL does not support wildcards in user names."
>
> Which means, that, although I can use this syntax to grant access for a
> user to all databases:
>
> GRANT SELECT, INSERT, UPDATE, DELETE ON * TO 'someuser'@'%';
>
> I can't do something like this to grant all users access to a database:
>
> GRANT SELECT, INSERT, UPDATE, DELETE ON mydyb TO '%'@'%';
>
> So, my question is this: How can I allow any user to use a specific
> database, without individually granting them all access?
>
> The reason I want to be able to do this is that the server hosts a large
> number of individual ecommerce sites running on the same core software. Each
> site has its own database for products, customer data, etc, which is only
> accessible to that site. But each site also needs to be able to access a
> single, server-wide database which both stores configuration information for
> the software that the sites run on and store usage statistics for each site
> which can be accessed by the server admins without needing to have access to
> each site's own database.
>
> Clues, anyone?
>
> Mark
> --
>  Sent from my Babbage Difference Engine
>  http://mark.goodge.co.uk
>  http://www.ratemyairport.com
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:
> http://lists.mysql.com/mysql?unsub=1
>
>


-- 
John Daisley
Butterfly Information Systems

Microsoft SQL Server Database Administrator
Certified MySQL 5 Database Administrator & Developer
Cognos BI Developer \ Administrator

Available for short & long term contracts

Telephone: +44 (0)7918 621621
Email: john.daisley@stripped

Thread
Allowing all users to access a specified databaseMark Goodge3 Jun
  • Re: Allowing all users to access a specified databaseJohn Daisley3 Jun
    • Re: Allowing all users to access a specified databaseMark Goodge3 Jun
      • Re: Allowing all users to access a specified databaseJohn Daisley3 Jun
        • Re: Allowing all users to access a specified databaseJohan De Meersman3 Jun
  • Re: Allowing all users to access a specified databaseJohan De Meersman3 Jun