What Are Common MySQL User Permissions
I want to use something like PHPBB forums and using one MySQL user and database. Just wondering, what are common user permissions I should set for the user? I want to try to minimize any permissions that can cause big risk to the server security.
Here is a full list of permissions I can grant to the user (via Webmin):
-Select table data
-Insert table data
-Update table data
-Delete table data
-Create tables
-Drop tables
-Grant privileges
-Reference operations
-Manage indexes
-Alter tables
-Create temp tables
-Lock tables
View Complete Thread with Replies
Sponsored Links:
Related Forum Messages:
MySQL Forgetting User Permissions
Does anyone know what could be the cause of this issue? I located a few others over at cpanel.net that have this problem, but no solution has been found. [url] I am running a VPS server with the following: WHM 10.8.0 cPanel 10.9.1-S14304 RedHat 9 i686 - WHM X v3.1.0 phpMyAdmin - 2.9.0.2 MySQL client version: 4.1.10 mysql version: 5.0.27-standard I have a database user that needs "Super Privileges" and so this was done. However, when Cpanel is updated the user permission is reset automatically from "ALL PRIVILEGES" to "USAGE". Here's a look at the database permissions from phpMyAdmin. Code: User Host Password Global privileges Grant hello localhost Yes ALL PRIVILEGES Yes hello_ % No ALL PRIVILEGES Yes hello_ localhost No ALL PRIVILEGES Yes The user "hello" loses its "ALL PRIVILEGES" and switches over to "USAGE" if an update is triggered. Updates to cpanel, creating/removing a database/user, and updating the account password will cause the switch.
View Replies!
View Related
Granting MySQL Command Line Permissions To A User
Is there any safe way to grant command line permissions to a user/specific account? One that only allows them access to databases on their account. The problem is that this user intermittently runs queries that cause their database to hang (including PHPMyAdmin, so they can't view the processlist through there), and I have to manually kill that process, because they can't. Server is 2.4.21 with MySQL 4.0.27, admin is cPanel WHM.
View Replies!
View Related
Rsync Backup - User Permissions
I have a problem with my rsync backup First of all my setup is thus: I have a Linux box at the office which has an rsync cron on it which pulls from my web server as a backup. It pulls websites, mysql, conf files etc. My web server is running debian etch LAMP etc. When I originally set it up I used root user to log into the web server, and setup keys to authenticate, this worked perfectly. I then decided that having direct root access to the web server was a bad thing so I have turned off root login (PermitRootLogin no in sshd_config) I then setup a backup user which works fine for the website files but fails on permissions for the mysql data files (/var/lib/mysql) How can I get over this without granting root access to the backup user which would defeat the object of not allowing root access. I have been told about host authentication based on ip address but I have dynamic address at the office so that would be no good
View Replies!
View Related
Upgrading To VPS - User And Group Permissions
I've finally made the leap to upgrading from shared hosting to a VPS. I'm still setting up my configuration before I point the domain name to my new server, but for now, I have the site mirrored and I'm ensuring that all is running well. For the most part, everything is working, but I am running into a few permission issues... As of right now, all the files in my htdocs directory are owned by root, and I am logging into my FTP client as root. However, I'm pretty sure that this is not how I should be doing this, because I need to allow write permissions to some folders from my php scripts. I was just curious, how do you you guys set up the users and groups on your linux servers (running apache). I'm just not certain of the best way to handle it. Should I make a new FTP user, and if so, what group should it go in? Should that user be the owner of all the web files? When is it safe to set folder permissions to 777?
View Replies!
View Related
How To Edit FTP User Permissions On A CPanel Account
My Pink Floyd website has a photo section of rare concert pictures that our members upload. We have about 3,000 of these pictures, that our members upload via an FTP server that is hosted on a simple cPanel web hosting account. Someone logged into the account and not only deleted all the pictures, but uploaded obscene pictures and index.html files to some really nasty stuff. We delete all the obscene stuff, but before we re-upload all the pictures I need to know... On a cPanel account is there a way to have the FTP User only able to upload files and not edit/delete/change? Somehow we can edit their permission? I asked HostGator about this and the ChatTech said this cannot be done, and I was a bit surprised. I could easily do this on my own server, but i'm not sure where to start at the user level.
View Replies!
View Related
Mysql/user Is Marked As Crashed
I am trying to start mysql but i am getting the following error MySQL manager or server PID file could not be found! [FAILED] Starting MySQL................................... [FAILED] I checked my hostname.err file in /var/lib/mysql and this is the error message it shows. 070130 17:59:41 mysqld started 070130 17:59:42 [ERROR] /usr/sbin/mysqld: Table './mysql/user' is marked as crashed and should be repaired 070130 17:59:42 [ERROR] /usr/sbin/mysqld: Table './mysql/user' is marked as crashed and should be repaired 070130 17:59:42 [ERROR] Fatal error: Can't open and lock privilege tables: Table './mysql/user' is marked as crashed and should be repaired 070130 17:59:42 mysqld ended how I would repair that to get mysql to start again?
View Replies!
View Related
MySQL Replication For User On Shared Server
I never did replication and do not know much about it so I figured I would ask here if anyone knows or has done it before like this. I have a user who wants me to enable replication on my server for his user. I dont like the sounds of it on a shared environment but if there is no risk to other users and its not a big resource hog I will do it. Anyway, from what I gather I have to: 1. execute: GRANT REPLICATION SLAVE ON user_main.* TO 'repl'@'ip-here' IDENTIFIED BY '4T6WjUZa'; [url] 2. Stop mysql server and Add in my.cnf: [mysqld] log-bin=mysql-bin server-id=1 slave-compressed=1 binlog-do-db=user_main start server[url] 3. execute: SHOW MASTER STATUS; we need values of colomns File and Position from output of above command[url] So my questions are: Is there any security risk? Is there significant extra resource usage? Is this even done on shared environments?
View Replies!
View Related
Mysql User Privilege Changed By Cpanel Or What
I am using Cpanel. One Cpanel account is backup. I use it to backup my database. Under mysql, I gave this account ( backup ) many priviledges. But when the backup script ran, error said that backup account can not 'lock table'. I gave "lock table' priviledge again and run the script, it is ok. But after a while, when the script ran autmatically on daily basis, it lost the 'lock table' priviledge again. I wonder if Cpanel is messing me up? What can I do about it? anyone knows?
View Replies!
View Related
MySQL: Access Denied For Root User
When I deleted a database, the user apparently was orphaned because when I tried to recreate it, it returned "user already exists". I've never encountered that problem although from Googling, I see others have and they delete the user to get around it. When I log into mysql using the da_admin@ account and attempt to remove the user with drop user <user_name>; I receive the following error message: ERROR 1227 (42000): Access denied; you need the CREATE USER privilege for this operation It seems I don't have rights even as the root user. How can I get remove the orphaned user?
View Replies!
View Related
Weird MySQL: User/pass Stops Working After A While
I am having a very strange problem with 2 different cPanel accounts on a server with 500-600 accounts. For some reason after a day or two the mysql username/password stops working. We have tried changing the MySQL user and the password with no success. The log does not indicate that the MySQL password was changed in any way. Only these 2 accounts are affected and this problem occurred at least half dozen times each. Again: these are two different accounts with 2 different MySQL users that after a while stop working (I am unable to determine if they stop working at the same time b/c they belong to different customers). When we reset the user (with the same pass) it works for a day or two. I have checked to connect not only from PHP but also from shell when it's down: it also doesn't work so this is a pure MySQL problem. Also on the server we have Fantastico.
View Replies!
View Related
Common Managed Colocation
I am writing an article about managed colocation (what it is, what are the benefits, how is it different from other hosting options, etc.). What are some common questions you get from your customers regarding your managed colocation or managed services? Do they see the value right away? Why are the hesitant? Is it clear to them which aspect of their server is under the control of the hosting company and which is still their responsibility?
View Replies!
View Related
How Common Is Port 8080
I want to have a static server for my website which runs on the same machine as the dynamic server. I have read on the internet that port 8080 is a good alternative port to use. Is common enough that it will work in all cases like port 80? And that it won't be blocked by firewalls and so on since it's not a service port (port < 1024).
View Replies!
View Related
Common Attack To Test Mod_security
I just installed mod_security and would like to test some common attack to see if it's blocking it I tried passing "cmd=uname -a" as parameter to a .php, but it didn't block it any other test I can try? I'm using almost all rules from gotroot
View Replies!
View Related
MySQL's Error Code 28: What Are It's Common Causes And Other Pertinent
This is part 1 of a personal tragic-comic narrative starring myself, a simple, unassuming end-user of value-based web hosting services, and the supreme villain of this pathetic tale, the Iago to my Othello, would be a verminous, sub-human parasite collective disguised as a professional web-hosting company in the vicinity of Columbus, Ohio. Speaking of Shakespeare, it seems to this humble WHT supplicant that the comedy of errors authored by the entities in question, a craven crew of possum-bellied, pigeon-brained menagerie of cubicle-dwelling subhuman troglodytes masquerading as ethical business-persons and capable hosting providers, is so egregious that if a scale of measurement is ever devised for web-hosting incompetence, it should be named after this company, in recognition of their utter incompetence and arbitrary imbecilic buffoonery disguised as reasonable technical support and customer service. Apparently this company thinks it's more important to use their scale-encrusted rat-tails to cover up their own mistakes instead of giving reasonable responses to customer questions regarding apparent server issues. Which brings me to my initial question: MySQL's docs say that Error Code 28 results from lack of disk space or write permissions. What are the common causes of this? Who has the power to control it from happening, the web host or the end user?( in this arrangement, the host is running an overloaded server and controls all of the configurations and aspects of the server while the user is using secure software with moderate usage of bandwidth and database queries). I have additional questions in regards to a more general issue regarding failure to write/open to directories as well, but I'll wait for some responses first. Excellent forum, by the way.
View Replies!
View Related
Yum Error: Gclib-common Dependency
After install yum on my centOS 4.4 VPS, I ran yum update and got this error: Error: Missing Dependency: glibc-common = 2.3.4-2.25 is needed by package glibc-dummy-centos-4 When I tried to install glibc-common, I got this error: error: Failed dependencies: glibc-common = 2.3.4-2.25 is needed by (installed) glibc-2.3.4-2.25.i686 glibc-common = 2.3.4-2.25 is needed by (installed) glibc-dummy-centos-4-2.3.4-2.25.swsoft.i386 When trying to install these other things, I get more dependency errors. I noticed that glibc-dummy-centos-4-2.3.4-2.25.swsoft.i386 was mentioned. I'm not sure what this is, but it's by SwSoft? Is this something I have to contact my provider about? Thanks.
View Replies!
View Related
Installed MySQL In /usr/local/mysql But Error In /var/lib/mysql
I installed the MySQL binary packages in /usr/local/mysql/ after removing the MySQL RPM package. MySQL is functioning when I executed /usr/local/mysql/bin/safe_mysqld. I reinstalled MySQL before I installed PHP. When I used a PHP script to access a MySQL database, it outputs an error: Code: Warning: mysqli::mysqli() [function.mysqli-mysqli]: (HY000/2002): can't connect to local mysql server through socket /var/lib/mysql/mysql.sock in index.php on line 2 However, I installed MySQL in /usr/local/mysql, not in /var/lib/mysql. How do I fix MySQL?
View Replies!
View Related
FTP + Permissions
I'm trying to get FTP working on a FreeBSD 7.1 box running ProFTPd. The service runs but the issue is that the users cannot write to their home dirs. The server returns a 550 error. Previously ProFTPd ran as user and group of "www" but I changed it to "nobody", which did not change anything. I'm sure the issue is that of the home dirs for the users being owned by the users themselves and the service account not having access to write in that directory. I'm not sure what is best to do here. Do I lift permissions so everyone can write to the home dirs? or is there a better way?
View Replies!
View Related
Correct Permissions To Use
I am in the process of setting up my server and have come to the stage where I am uploading my actual website scripts and files. I am a little confused however as to what permissions and file/directory ownership my website files should be set to. My web root is set to 755 (rwx/r-x/r-x) with Owner as root, and Group as root. All files within the web root are set to 744 (rwx/r--/r--) with the owner and group the same as the web root. The permissions set allow php scripts to function but I am not sure if the group should be set to root on all these files, is this correct? My site users have no ftp access if that makes any difference to ownership.
View Replies!
View Related
Crontab Permissions
In trying to setup a cronjob on a new server I notice that cPanel tells me that usr/bin/crontab permissions are wrong and that they need to be changed to 4755. When I log in to the server with WinSCP and attempt to change the permissions it just doesn't do it ... it looks like it's doing it, no errors, but it just leaves it the same!
View Replies!
View Related
Webdav Permissions
I tried installing webdav on my VPS, but I'm having problems. I added the module as a DSO. I'm able to connect to it fine (in multiple client (dreamweaver, cadaver)), however, when I try to upload, I'm not able to. Apache has permissions for that directory and for the lock file. However, I get a 403 Permission Denied error.
View Replies!
View Related
Cannot Change Permissions
I'm using wsftp checking permissions in domain.net in this directory: /public_html/mambots/content/plugin_jw_sig through wsftp i saw chmod 755 but when i try to delete this directory appears with 550 and i can't delete it So i used File Manager tool in Cpanel, selected directory to erase it, seems like was done, but when i refresh page the directory it's still there, so i try to change permissions because apparently it has 755 but i can't do anything with it, so when i click button to change permission i got an error message [a fatal error or timeout occurred while processing this directive] Then i go trough wsftp to check again and this directory it's still there
View Replies!
View Related
Web Permissions
when I setup a server I don't really care about permissions, I do lot of nasty chmod 777 * and stuff to easily get away with permission issues, since I'm the only one with access anyway. But for a server that may be used for webhosting, how do I go about setting permissions in home directories so that programs like apache/php can still read/write to the user's web data? I'm guessing I need to add the user apache to each user's group and chmod 770 but I'm not too sure how to go about that, or if that's even how I should do it.
View Replies!
View Related
IIS Permissions
how permissions work in IIS in basic english I spent ages trying to get a crm system working on my server and it only worked without errors when I changed the anonymous user privileges to "change" instead of "read". Now this is meant to be insecure right? But my question is.... what exactly can go wrong with this configuration? In what ways is it insecure? Also... correct me if I'm wrong but do: - Web server permissions: only affect what scripts can run locally etc... and - User / file level permissions: Protect against anonomous access changes from the net?
View Replies!
View Related
IUSR Permissions
I've created a new site on an IIS server. And when I try to access it, I get a window authentication window. Seems I've had this happen before and it was a problem with IUSR permissions or password?
View Replies!
View Related
Permissions With An Account
This is what you get when you go to this one site on the server in your browser: Forbidden You don't have permission to access / on this server. Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request. This is a site in a reseller's account. The reseller had suspended it for non-payment. The account owner paid their fees, and the reseller unsuspended it. But now the site can't be reached. I chowned and chmodded the account, but that didn't fix it.
View Replies!
View Related
Ftp Permissions
Running LAMP, CentOS and webmin. I've created a user and group for FTPing to a new domain. Problem is that when using Filezilla I get 'critical transfer error' after uploading files. I have no problem with doing uploads as root, so this would appear to be permission problems. So my question is, what do I need to do with the ftp user / or group in order to give appropriate permissions to place files under the public_html directory? Either through SSH or via Webmin...
View Replies!
View Related
FTP Permissions
I have some folders and files which simply won't let me upload, rewrite, rename, change permissions etc. Any action I try to perform on them simply gives me an error such as 550 Could not change perms on /public_html/foldername: Operation not permitted The current permissions seem fine (755) and cpanel's file manager isn't having any luck either. It's for a zen-cart site Machine is running Cent OS with the following; cPanel Version 11.2.17-CURRENT cPanel Build 12566 Theme x3 Apache version 1.3.37 (Unix) PHP version 4.4.6 MySQL version 4.1.22-standard Architecture i686 Operating system Linux
View Replies!
View Related
/tmp Permissions
while am installing some software wordpress plugins [ podpress ] i have some problem in /tmp permission to the site owner! how can we handle this problem so i can have a permission in my tmp folder i try to chmod the tmp to 777 from the SSH root ... but the problem didn't solve ...
View Replies!
View Related
File Permissions
my question is relating to a "DJ Panel" that I am making. I am looking into various file permissions and was wondering if all PHP files that are part of the DJ Panel have file permissions of 0666 will that pose any kind of security threat (make life easier for hackers) or do you see any downside to doing this?
View Replies!
View Related
Where Should I Specify WHM Login Permissions?
Yesterday I upgrade to cPanel 11... I can perfectly login using WHM, but one of our customers can login using root, this is the error: Access Denied The server was configured to not permit you access to the specified resource. If you believe this is in error or inadvertent, please contact the system administrator and ask them to update the host access files. Where should I specify WHM login permissions? Thanks.
View Replies!
View Related
Tool To Check Permissions
Is there any tool available which can be used to check permissions of the folders and files. For example, if we run the tool on the server it gives the list of files or folders which have write/modify permissions for everyone or other anonymous users in Windows.
View Replies!
View Related
777 Permissions For Www
Let me start off with saying: I haven't had any suspicious activity, nor do I think I was compromised. I logged in as root, and was simply clicking around my dedicated server and came across a few folders with permissions at 777. ALL are above /public_html Irregardless, is this safe? I recall reading a bunch of topics on here, that /tmp needs to be hardened. Isn't this also above /public_html? For one example: /var/tmp is chmod to 077 ..inside is a bunch of sess_ files Is this folder open to hacking?
View Replies!
View Related
Permissions On Apache Server
Not sure if this is an Apache issue but I'm guessing it is. I also have cPanel on this server. I made a PHP script and placed it on my server. This script has a function that will create a new file on the server, say a .txt file with information in it. When I go to do anything with that file that is created such as edit it, I get a permission denied from the server. For example, FTP returns: "Response: 550 Rename/move failure: Permission denied. " Someone guessed that it is possible that when the PHP file is creating a new file on the server, it automatically places its permissions under root/apache, making it inaccessible for the cPanel user... if this were the case how could I potentially solve this issue?
View Replies!
View Related
|
TRACKER
