Permissions for Load Data (using ACLs?)
Posted by:
jacob
Date: July 18, 2006 01:14PM
Need help with getting permissions right on user directories. We have multiple teams whose directories have full rights (rwx) for owners and group members but no rights for "others". I want team members to be able to upload data into MySQL, but I'd prefer not to give every user the ability to access and read every team's directories.
I've used ACLs to give the mysql user rx permissions to the upload directory (e.g. /home/user/upload) and all parent directories (yes, I'm aware that this means anyone in mysql technically could get at these upload directories not just team members). This doesn't work, however. MySQL CAN see the file because it's not giving me the usual error when it can't read a directory:
ERROR 13 (HY000): Can't get stat of <Generic File> (Errcode: 13)
Instead it gives me this error:
ERROR 1085 (HY000): The file <Upload Directory> must be in the database directory or be readable by all
The file has the correct ACL settings to be readable by mysql:
$ getfacl test.csv
# file: test.csv
# owner: <owner>
# group: <group>
user::rw-
user:mysql:rwx #effective:rw-
group::rwx #effective:rw-
mask::rw-
other::---
Does the file really have to be rw-rw-r--? Does MySQL not work with ACLs? Is there anyway to have separate upload directories for multiple teams? Any help would be appreciated. Thanks.
We're using:
Centos 4
Redhat Enterprise 4
MySQL 4.1.19
Subject
Views
Written By
Posted
Permissions for Load Data (using ACLs?)
5821
July 18, 2006 01:14PM
Sorry, you can't reply to this topic. It has been closed.
Content reproduced on this site is the property of the respective copyright holders.
It is not reviewed in advance by Oracle and does not necessarily represent the opinion
of Oracle or any other party.