In our SQL server we have 200+ databases of different websites. Each database has it's own users. While granting privileges for a new database, I've found that each of the database user has permission like this:
"| GRANT CREATE TEMPORARY TABLES, LOCK TABLES ON *.* TO 'vector'@'192.168.0.%' IDENTIFIED BY PASSWORD '2ea812c979ef46a1' |
| GRANT SELECT, INSERT, UPDATE, DELETE, CREATE, DROP, REFERENCES, INDEX, ALTER ON `vector`.* TO 'vector'@'192.168.0.%' |".
Like database user 'vector', all database user has access to *.* and also to the specific database. Is this risky to have this kind of permission? The previous admin created those account. If I remove the first permission from all database user will there me any problem? Thanks for you help in advance.