MySQL Forums
Forum List  »  Security

Re: Application level firewall
Posted by: Bob Field
Date: August 21, 2006 01:37PM

You can set up user accounts in MySQL with the specific access permissions that you require. Not having your web pages connect as 'root' helps a great deal. I typically create two user accounts for each database, one with only SELECT access and another with SELECT+INSERT+UPDATE+DELETE. Using an account with the minimum level of access to your database as required to load the page minimizes the damage should an attack occur, and also simple precautions in the web page's scripting can further protect you.

Options: ReplyQuote


Subject
Views
Written By
Posted
3624
August 21, 2006 01:28PM
Re: Application level firewall
2235
August 21, 2006 01:37PM
2214
August 21, 2006 01:49PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.