Hi Ignacio!
It has always been the sysadmin's job to maintain security. Any one who is not doing that should be fired for gross incompetence (my opinion, of
course).
Right but I still don't know what is your opinion about the 'only_db' setting ;)
How about this: "*** NOTE: phpMyAdmin does not apply any special security methods to the MySQL database server. It is still the sysadmin's job to grant permissions
on
the MySQL databases properly.
Fine :) I'll add this to the doc tonight. Thanks for the help.
Loïc
______________________________________________________________________________ ifrance.com, l'email gratuit le plus complet de l'Internet ! vos emails depuis un navigateur, en POP3, sur Minitel, sur le WAP... http://www.ifrance.com/_reloc/email.emailif
On Thu, 11 Oct 2001, Loïc wrote:
Hi Ignacio!
It has always been the sysadmin's job to maintain security. Any one who is not doing that should be fired for gross incompetence (my opinion, of
course).
Right but I still don't know what is your opinion about the 'only_db' setting ;)
Heh. It was in there when I originally wrote the reply, but I edited it out.
I like only_db. I've had instances where I wanted a user to see only a single database (and yes, I also granted permissions properly ;) ) because they were _not_ a computer person and seeing all the databases would only have confused them. Being able to set up a second copy of phpMyAdmin (2.1.0 at the time) and setting the single viewable database was quite convenient.
Right but I still don't know what is your opinion about the 'only_db' setting ;)
Sorry to add my pepper grain but on many virtual ISPs, when you use phpmyadmin, you only have right to your database, but you all the server's ... (about 300 at my communitech account). So just to access to my base, I'd have to look for it each time (and the name of the base is not very simple ...)
To sum this up, 'only_db' is _really_ important for me (and many virtual/free hosts users) !
Alain.
-
Alain Brissaud -
Ignacio Vazquez-Abrams -
Loïc