[Catalyst] Newbie Question about Database
Robert L Cochran
cochranb at speakeasy.net
Wed Jan 21 02:53:05 GMT 2009
Giancarlo Corcuera wrote:
>
>
> Chisel Wright wrote:
>> On Tue, Jan 20, 2009 at 09:08:31AM -0500, Giancarlo Corcuera wrote:
>>
>>> Thank you all for your answers:
>>> Actually, what I did is to follow the basic instructions from mysql
>>> forum but what I was missing is to set the user with full access
>>> from any host, which I created later from phpmyadmin.
>>>
>>
>> full access? any host? this makes me nervous (for you and your data)
>>
>>
> lol I know but I'm doing this inside a private lan where we are
> building this app with my coleagues :p
> of course later on we will have specific accounts with limited access
Your colleagues can be your biggest security problem. It just takes an
argument...a jealousy...someone who feels belittled...someone who just
wants to take advantage of lax data security. It is real good practice
to use least-privilege access to data from the very beginning.
Bob
More information about the Catalyst
mailing list