tags:

views:

33

answers:

4
+1  Q: 

Setting up application privileges in MySQL

Say you created a blog application, and it's data is stored in a MySQL database. In your application configuration you set the data source name to myBlog user root password whatever

Now, when users start using your blog to access, post to, and comment on threads, etc... I am assuming they connect as root through the application myblog ...

So... users connect to the application myBlog who in turn connects to MySQL as user root , using password whatever --- it's not really the users that are connecting to MySQL, it's the application. Correct?

Is there not a security issue with this approach? Should I create a new username in MySQL for the application myBlog with specific privileges and leave root only for administering the database?

+2  A: 

yes, the application connects to the db. you should create a new mysql user for your application, do something like

CREATE DATABASE myblog_env;
CREATE USER 'myblogenv-user'@'%' IDENTIFIED BY 'your pw';
GRANT ALL PRIVILEGES ON myblog_env.* TO 'myblogenv-user'@'%' WITH GRANT OPTION;

something like the above should do it. The 'env' part of the above is for if you want to create a new db for difference environments, like dev, stage, prod, whatever....

this way your application user has complete access to its db, but no other dbs in the mysql instance.

hvgotcodes  2010-07-31 17:30:29
Thanks! But would it not be a bad idea to grant all privileges to an application being used by hundreds of people?
Mel  2010-07-31 17:32:02
@Mel, the `GRANT ALL` in this case means give all database level privileges because of the `ON` clause.
Mike Sherov  2010-07-31 17:54:06
+2  A: 

First of all, you should NEVER use the root account of a mysql database for anything else then admin work. Second of all, in theory yes the user of your blog would be the "root" in your mysql database, but hopefully there is a lot of sanatizing and cleaning up in your blogs code before any queries are executed...anything else would be know as an "sql inject"

elmac  2010-07-31 17:33:11
+1  A: 

The short answer is: Yes.

Long answer:

Security: You should have a different user for your application than you do for yourself as the administator. That application user should only have read (and write if necessary) privileges on the specific database it needs to access. Also, it should not have privilege-granting privileges, nor drop table privileges, nor database creation/dropping privileges, nor anything else that is reserved for you.

Convenience: If you ever need to change your password, you don't want to have to change your application, and vice versa.

Mike Sherov  2010-07-31 17:35:52
Thanks. So, basically, anything in this table (http://dev.mysql.com/doc/refman/5.1/en/privileges-provided.html) that says "server administration" (third column, bottom) should not be granted?
Mel  2010-07-31 17:46:03
In general, yes. Sometimes people choose even more restrictive privileges. For example, most likely, the application doesn't need to create or drop tables, so you wouldn't grant those privileges, but it does need to do a select or an insert, so those privileges should be granted.
Mike Sherov  2010-07-31 17:52:46
+1  A: 

You are exactly right. This is called the principle of least privilege. You should give the application the minimum access rights that it needs to complete the job. This would not be root.

Marcus Adams  2010-07-31 17:56:38

related questions

Remove Quotes and Commas from a String in MySQL
What's the best way of converting a mysql database to a sqlite one?
How do you manage databases in development, test, and production?
Multiple foreign keys?
Add 1 to a field (MySQL)
Issues using MS Access as a front-end to a MySQL database back-end?
Bigger than a char but smaller than a blob
How do I retrieve my MySQL username and password?
Long-time LAMP Developer moving to VB.NET
How do I Concatenate entire result sets in MySQL?
Full complete MySQL database replication? Ideas? What do people do?
SQL: Distribution of table in time
SQLite vs MySQL
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
Multiple Updates in MySQL
MySQL/Apache Error in PHP MySQL query
What all do I need to escape when sending a (My)SQL query?
Auto Generate Database Diagram MySQL
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
Python and MySQL
SQL Server 2005 implementation of MySQL REPLACE INTO?
How to export data from SQL Server 2005 to MySQL
Throw Error In MySQL Trigger
Binary Data in MySQL