sticky history
Posted by:
Uwe Dippel
Date: December 01, 2005 11:33PM
(or whatever 'history' is called in MySQL)
When any user logs on locally through
mysql -u foo -p
she can view only her database(s),
*but* the cursor keys permit to retrieve all the commands entered earlier by *other* users !!?
So, user foo can scroll up to when root changed his password; and view that password in plaintext.
Sorry, I have tried quite some time on Google and in here to find out how to disable this, and forcibly clear the history; but didn't find how (may a language problem; I might not have found the good search terms).
In any case, it is pretty bad that the history is 'on' by default !
Sitting on 4.0.24; OpenBSD 3.8
Subject
Views
Written By
Posted
sticky history
3624
December 01, 2005 11:33PM
2032
December 02, 2005 03:23AM
Sorry, you can't reply to this topic. It has been closed.
Content reproduced on this site is the property of the respective copyright holders.
It is not reviewed in advance by Oracle and does not necessarily represent the opinion
of Oracle or any other party.