+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Support Area (/forum-30.html)
+--- Forum: Usage (/forum-34.html)
+--- Thread: SQL user permissions (/thread-2186.html)
SQL user permissions - rbtux - 01-20-2008 05:32 AM
Can somebody explain why all the database user must have access from everywhere and not just localhost?
I mean when a customer needs the access you can manually do this for a specific user...
I doubt that this is a good idea in focus of security...
RE: SQL user permissions - BioALIEN - 01-20-2008 12:58 PM
I absolutely agree with this. Better to make it localhost by default and have a configurable switch in ispCP to toggle between localhost and an ip (with wild-card as per cPanel).
For simplicity's sake, lets just have the initial toggle between localhost and everywhere. But by default, all users created should be localhost.
RE: SQL user permissions - joximu - 01-20-2008 06:40 PM
We have a small thread in the german corner discussing this. jmeyerdo is working on a patch to make it possible for the admin to choose between actual behavour and "only localhost"...
/J
RE: SQL user permissions - RatS - 01-20-2008 08:59 PM
would be better on a per-domain base; please open a ticket!
RE: SQL user permissions - raphael - 01-22-2008 08:55 AM
not a "big deal" because at least Debian's default my.cnf makes mysqld only listen in localhost