What Are Common MySQL User Permissions
Jun 29, 2007
I want to use something like PHPBB forums and using one MySQL user and database. Just wondering, what are common user permissions I should set for the user? I want to try to minimize any permissions that can cause big risk to the server security.
Here is a full list of permissions I can grant to the user (via Webmin):
-Select table data
-Insert table data
-Update table data
-Delete table data
-Create tables
-Drop tables
-Grant privileges
-Reference operations
-Manage indexes
-Alter tables
-Create temp tables
-Lock tables
View 3 Replies
ADVERTISEMENT
Jul 5, 2007
Does anyone know what could be the cause of this issue? I located a few others over at cpanel.net that have this problem, but no solution has been found.
[url]
I am running a VPS server with the following:
WHM 10.8.0 cPanel 10.9.1-S14304
RedHat 9 i686 - WHM X v3.1.0
phpMyAdmin - 2.9.0.2
MySQL client version: 4.1.10
mysql version: 5.0.27-standard
I have a database user that needs "Super Privileges" and so this was done. However, when Cpanel is updated the user permission is reset automatically from "ALL PRIVILEGES" to "USAGE".
Here's a look at the database permissions from phpMyAdmin.
Code:
User Host Password Global privileges Grant
hello localhost Yes ALL PRIVILEGES Yes
hello_ % No ALL PRIVILEGES Yes
hello_ localhost No ALL PRIVILEGES Yes
The user "hello" loses its "ALL PRIVILEGES" and switches over to "USAGE" if an update is triggered. Updates to cpanel, creating/removing a database/user, and updating the account password will cause the switch.
View 3 Replies
View Related
Sep 3, 2007
Is there any safe way to grant command line permissions to a user/specific account? One that only allows them access to databases on their account.
The problem is that this user intermittently runs queries that cause their database to hang (including PHPMyAdmin, so they can't view the processlist through there), and I have to manually kill that process, because they can't.
Server is 2.4.21 with MySQL 4.0.27, admin is cPanel WHM.
View 7 Replies
View Related
Jul 18, 2013
I use Basic Auth to limit access to a web site. This seems to work ok. I noticed though in the logs that the logged in user is not logged:
80.....188 - - [16/Jul/2013:09:56:29 +0200] "GET ..." 200 1844 "...." " ...
I would expect the second - to be replaced by the logged in user. The doc says, the user is logged if the document is protected. I do protect the whole directory using directory match. Without log in I fail to retrieve the document in question.
View 4 Replies
View Related
Nov 22, 2008
This is part 1 of a personal tragic-comic narrative starring myself, a simple, unassuming end-user of value-based web hosting services, and the supreme villain of this pathetic tale, the Iago to my Othello, would be a verminous, sub-human parasite collective disguised as a professional web-hosting company in the vicinity of Columbus, Ohio.
Speaking of Shakespeare, it seems to this humble WHT supplicant that the comedy of errors authored by the entities in question, a craven crew of possum-bellied, pigeon-brained menagerie of cubicle-dwelling subhuman troglodytes masquerading as ethical business-persons and capable hosting providers, is so egregious that if a scale of measurement is ever devised for web-hosting incompetence, it should be named after this company, in recognition of their utter incompetence and arbitrary imbecilic buffoonery disguised as reasonable technical support and customer service.
Apparently this company thinks it's more important to use their scale-encrusted rat-tails to cover up their own mistakes instead of giving reasonable responses to customer questions regarding apparent server issues.
Which brings me to my initial question:
MySQL's docs say that Error Code 28 results from lack of disk space or write permissions.
What are the common causes of this? Who has the power to control it from happening, the web host or the end user?( in this arrangement, the host is running an overloaded server and controls all of the configurations and aspects of the server while the user is using secure software with moderate usage of bandwidth and database queries).
I have additional questions in regards to a more general issue regarding failure to write/open to directories as well, but I'll wait for some responses first.
Excellent forum, by the way.
View 7 Replies
View Related
Jan 18, 2009
I have a problem with my rsync backup
First of all my setup is thus:
I have a Linux box at the office which has an rsync cron on it which pulls from my web server as a backup. It pulls websites, mysql, conf files etc.
My web server is running debian etch LAMP etc.
When I originally set it up I used root user to log into the web server, and setup keys to authenticate, this worked perfectly.
I then decided that having direct root access to the web server was a bad thing so I have turned off root login (PermitRootLogin no in sshd_config)
I then setup a backup user which works fine for the website files but fails on permissions for the mysql data files (/var/lib/mysql)
How can I get over this without granting root access to the backup user which would defeat the object of not allowing root access.
I have been told about host authentication based on ip address but I have dynamic address at the office so that would be no good
View 2 Replies
View Related
Jul 23, 2009
I've finally made the leap to upgrading from shared hosting to a VPS. I'm still setting up my configuration before I point the domain name to my new server, but for now, I have the site mirrored and I'm ensuring that all is running well. For the most part, everything is working, but I am running into a few permission issues...
As of right now, all the files in my htdocs directory are owned by root, and I am logging into my FTP client as root. However, I'm pretty sure that this is not how I should be doing this, because I need to allow write permissions to some folders from my php scripts.
I was just curious, how do you you guys set up the users and groups on your linux servers (running apache). I'm just not certain of the best way to handle it. Should I make a new FTP user, and if so, what group should it go in? Should that user be the owner of all the web files? When is it safe to set folder permissions to 777?
View 4 Replies
View Related
Apr 19, 2008
I am trying to setup a cronjob but cPanel, (Linux Centos 5), tells me that user/bin/crontab permissions are incorrect and need to be changed to 4755 - I try to change permissions in WinSCP [Properties] but it doesn't 'take'.
how to force a change of permissions with SSH (Putty)
View 2 Replies
View Related
May 15, 2008
My Pink Floyd website has a photo section of rare concert pictures that our members upload. We have about 3,000 of these pictures, that our members upload via an FTP server that is hosted on a simple cPanel web hosting account. Someone logged into the account and not only deleted all the pictures, but uploaded obscene pictures and index.html files to some really nasty stuff.
We delete all the obscene stuff, but before we re-upload all the pictures I need to know...
On a cPanel account is there a way to have the FTP User only able to upload files and not edit/delete/change? Somehow we can edit their permission?
I asked HostGator about this and the ChatTech said this cannot be done, and I was a bit surprised. I could easily do this on my own server, but i'm not sure where to start at the user level.
View 7 Replies
View Related
Jul 2, 2014
I believe the product we are using is Parallels Operations Automation.
We have a customer that we want to be able to give the right to unlock user accounts. The only way to do this seems to be to enable "Billing" as one of the privileges. Unfortunately this gives them more access than we really want to. Is there some trick we can use to give this user only these rights?
View 2 Replies
View Related
Jan 6, 2015
We have several sites on one server. When I use the plesk wordpress manager it some how updates the User and Group permissions on folders and files with the username apache. How or what command do I run to get it to use the site username and psacln. It appears something maybe in an update or whatever has caused this issue. This only occurs with wordpress and drupal updates from the plesk interface.
What command can I run just to update the permissions to update all users to a username and psacln security settings on folders and directories.Running Plesk 12.0.18 and CentOS7
View 1 Replies
View Related
May 6, 2015
We cant' modify any files of my website in WordPress that contain user www-data.
How can you can change the permissions to this user (www-data).
The version is Plesk 12.0.18 ActualizaciĆ³n #44
We have also Plesk 11.5 with WordPress and never has www-data user.
View 3 Replies
View Related
Nov 21, 2014
I have just used rsync to backup a dedicated server to a new cloud server. I put the files in a plesk webspace 'Backup' folder for ease of use (gui). In File Manager for that webspace it shows the folder user and group as root, which is obviously correct as rsync maintains users etc?
Thats fine, I just wanted to be able to back them up along with the rest of the server configuration and content.
However, when I run backup it says "For security reasons, backing up is performed on behalf of subscription's system user. This system user has no read access to:" and "So it was not backed up. All other data was backed up successfully. To fix this issue you may grant access read/write to the file or directory for system user "(username)" or "apache"."
I don't know how to give read/write access to the system user? Through file manager there is no option to change permissions.
View 1 Replies
View Related
Apr 20, 2009
I am using cPanel 11 (stable release) on a CentOS 5 server and would like to make it so that a certain database can only be connected to from the cPanel user that it is under (ie. user1_db can only be connected to from the user "user1" on the same server).
View 9 Replies
View Related
Nov 13, 2008
31015 100 15 0 151m 35m 5156 S 28 0.4 379:34.10 /usr/sbin/mysqld --basedir=/ --datadir=/var/lib/mysql
This is my top process, I have quad core server and because of this server load is over 10
I am using cPanel, is it possible to trace which user is using all this cpu?
View 6 Replies
View Related
May 25, 2009
How can see wich user have more mysql process?
View 2 Replies
View Related
Aug 15, 2008
how to allow user to remote mysql connection from his localhost ( in linux server with WHM )
my user wants to connect to the mysql from his localhost
View 7 Replies
View Related
Jan 30, 2007
I am trying to start mysql but i am getting the following error
MySQL manager or server PID file could not be found! [FAILED]
Starting MySQL................................... [FAILED]
I checked my hostname.err file in /var/lib/mysql and this is the error message it shows.
070130 17:59:41 mysqld started
070130 17:59:42 [ERROR] /usr/sbin/mysqld: Table './mysql/user' is marked as crashed and should be repaired
070130 17:59:42 [ERROR] /usr/sbin/mysqld: Table './mysql/user' is marked as crashed and should be repaired
070130 17:59:42 [ERROR] Fatal error: Can't open and lock privilege tables: Table './mysql/user' is marked as crashed and should be repaired
070130 17:59:42 mysqld ended
how I would repair that to get mysql to start again?
View 7 Replies
View Related
Aug 26, 2007
how do i backup mysql user privileges?
this will only backup the databases:
mysqldump --opt -u root -p --all-databases > data.sql
i would like to backup mysql user privileges too.
View 1 Replies
View Related
Jun 5, 2007
I know about the general log but want to just log queries of a specific user. Our database does 400 queries/s on a slow day, so I think it would be a pain to grep though a huge log like that. And, im not sure if it would cause any preformance issues.
View 0 Replies
View Related
Aug 7, 2007
By default, mysql will create user with host as 'localhost'. Now, if I want the host is '1.2.3.4' by default, how to configure it?
View 3 Replies
View Related
May 20, 2009
Why do most VPS servers have CentOS as the default/most common OS for linux?
View 14 Replies
View Related
Jan 24, 2008
What are the common scams or abuse, that beginning resellers need to be weary of? and how do you reduce exposure to these problems?
View 2 Replies
View Related
Jun 8, 2005
Anyone know the commands to change a MySQL user's password via ssh?
I found stuff for changing the root password, and tried to adapt it for the user, but it didn't work.
View 12 Replies
View Related
Nov 6, 2008
I never did replication and do not know much about it so I figured I would ask here if anyone knows or has done it before like this.
I have a user who wants me to enable replication on my server for his user. I dont like the sounds of it on a shared environment but if there is no risk to other users and its not a big resource hog I will do it. Anyway, from what I gather I have to:
1. execute:
GRANT REPLICATION SLAVE ON user_main.* TO 'repl'@'ip-here' IDENTIFIED BY '4T6WjUZa';
[url]
2. Stop mysql server and Add in my.cnf:
[mysqld]
log-bin=mysql-bin
server-id=1
slave-compressed=1
binlog-do-db=user_main
start server[url]
3. execute:
SHOW MASTER STATUS;
we need values of colomns File and Position from output of above command[url]
So my questions are:
Is there any security risk?
Is there significant extra resource usage?
Is this even done on shared environments?
View 5 Replies
View Related
Jun 26, 2008
I am using Cpanel. One Cpanel account is backup. I use it to backup my database.
Under mysql, I gave this account ( backup ) many priviledges. But when the backup script ran, error said that backup account can not 'lock table'.
I gave "lock table' priviledge again and run the script, it is ok.
But after a while, when the script ran autmatically on daily basis, it lost the 'lock table' priviledge again.
I wonder if Cpanel is messing me up? What can I do about it? anyone knows?
View 4 Replies
View Related
Oct 25, 2007
When I deleted a database, the user apparently was orphaned because when I tried to recreate it, it returned "user already exists". I've never encountered that problem although from Googling, I see others have and they delete the user to get around it.
When I log into mysql using the da_admin@ account and attempt to remove the user with drop user <user_name>; I receive the following error message:
ERROR 1227 (42000): Access denied; you need the CREATE USER privilege for this operation
It seems I don't have rights even as the root user. How can I get remove the orphaned user?
View 8 Replies
View Related
Jul 5, 2007
how check which database / user MySQL overload the server?
View 2 Replies
View Related
