How secure to grant "reload" privileges to a normal user in MySql
Hi,
One user in my company wants to run some flush cache queries on a MySql database, it needs "reload" privileges of Administration, how secure is to give this rights to a normal user ? Thanks, Deepak |
I'm not an expert, But it seems to me, That this may give them the ability to use an sql injection exploit,Or some other means of causing problems, And then reload the database, Thus enabling the damage.
Steel fences may be ugly, But they do work. Or maybe i'm paranoid. |
The reference guide states the following (for FLUSH):
Quote:
Then again, I may be overlooking something...I'm not strong in databases. Oh, and BTW, this IS MySQL, right? |
All times are GMT -5. The time now is 07:23 PM. |