MySQL Forums
Forum List  »  Security

How to add user that can add users
Posted by: Rickard Andersson
Date: December 27, 2006 08:37AM

I'm setting up a MySQL server for a university. The database contains some sensitive data such as the backend for our website. This data is stored in a database called 'website'. In the spring, we will be giving a course on databases and in this course each student will be given an individual login and a database in which they can roam free. We want the course supervisor to create all the users and databases, BUT, we don't want the course supervisor to have access to the 'website' database. Essentially, what I'm asking is:

Is it possible to create a user that can create databases and users and have full control over these without allowing this user access to our 'website' database?

I get the impression that in order for a user to be able to create new users, he or she must have INSERT access to the 'mysql' table. And if so, can't that user just grant himself permissions to the 'website' database?

If this isn't possible, how do you suggest we solve the problem? I guess running two instances of MySQL is one way, but I don't like it.

Any help would be appreciated.

Cheers,
Rickard

Options: ReplyQuote


Subject
Views
Written By
Posted
How to add user that can add users
5137
December 27, 2006 08:37AM
2771
December 27, 2006 05:42PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.