On Thu, 13 May 1999, Thimble Smith wrote:
> On Fri, May 14, 1999 at 02:50:24PM +0900, BOB SCOTT wrote:
> > I thought it might be a problem with basic file permissions
> > but that looks OK. All users can read all files in
> > my datadir directory (/var/lib/mysql/).
> > [root@linux /root]# ls -l /var/lib/
> > total 1973
> > .
> > .
> > drwxrwxr-x 12 mysql root 1024 May 12 14:33 mysql
> This is neither necessary nor recommended. Change the permissions
> back to the defaults - only the mysql user should be able to read
> any database directory. Otherwise all of the data are visible to
> anyone who has an account on your machine! Also, if they can read
> the data for the 'mysql' database, then they know all of the user
> names and passwords (they would have to crack the passwords, but it
> wouldn't be impossible).
> Also, there's no reason for the 'root' group to be able to read or
> write to any of those directories. 0700 is the appropriate perms.
Okay, im concerned now. I have done more than 10 installs of MySQL
on my network. Linux 2.0.36. I have used the MySQL-3.22.22-1 client,
devel, and MySQL rpms. I have never had a problem with connecting or such.
What gets me though, is you say default perm's for /var/lib/mysql should
be 0700. Every install ive done Defaults it to 0755 mysql.root.
drwxr-xr-x 5 mysql root 1024 May 12 21:00 mysql/
drwx------ 2 mysql mysql 1024 May 8 09:57 faqs/
drwxr-xr-x 5 mysql root 1024 May 8 07:51 mysql/
srwxrwxrwx 1 mysql mysql 0 May 12 21:00 mysql.sock=
-rw-r--r-- 1 mysql mysql 3 May 12 21:00 mysqld.pid
-rw-r--r-- 1 root root 1279 May 12 21:00 torch.BLUEZnet.com.err
drwxr-xr-x 2 mysql root 1024 May 8 07:51 test/
Have i just crossed my wires and misunderstood your post?
Or were you not exactly clear on your statement.