Re: ACL for mSQL with PHP

From: J. M. Castagnetto (jcastagnetto@hotmail.com)
Date: Wed Dec 22 1999 - 09:40:42 EST

Next message: Georg Horn: "sorting bug"
Previous message: J. M. Castagnetto: "Re: mSQL & PHP3 & Red Hat 5.2 - oops!"
Maybe in reply to: Keith Hunt: "ACL for mSQL with PHP"
Next in thread: J. M. Castagnetto: "Re: ACL for mSQL with PHP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Warning: contains some MySQL praise]

Not AFAIK. In that setup the best you will be able to do, is to create a
user with only read access and use that for the user's scripts, and run
another server in a different port under a different user with read/write
for admin purposes. You can then programatically send POST/GET requests from
one server to the other in your scripts.
The ACL model for mSQL is very simpleminded. MySQL has a more fine-grained
access control, the username needed to access a database
or a table has nothing to do with the one under which the server or PHP
runs, so you can have an access table for a database saying that user
"admin" with a particular password, connecting from the localhost can make
changes to a db, whereas anyone else can only do "SELECT" statements. You
can grant, for example SELECT to a user w/ or w/o a password, in a
particular table and connecting from a particular host (or IP mask).

Good luck.

>From: Keith Hunt <keith@uakron.edu>
>To: msql-list@lists.hughes.com.au
>Subject: ACL for mSQL with PHP
>Date: Tue, 21 Dec 1999 17:02:33 -0500
>
>I have a bit of a dilemma and am wondering if anyone else can see a way
>around it.
>
>In using mSQL with PHP (or probably any html-embedded scripting language),
>I need to add the user running the web server to the msql.acl file. For
>instance, I must add "nobody" to have write access to all the databases to
>allow update access. If I create different databases for different users,
>it seems that by each will have access to all databases, so long as they
>are using a script run by the web server.
>
>Is there a solution for this problem?
>
>Keith Hunt keith@uakron.edu
>Distributed Systems
>The University of Akron
>-------------------------------------------------------------------------
>To unsubscribe, go to http://www.Hughes.com.au/extras/email/

=====
Jesus M. Castagnetto - jcastagnetto@hotmail.com
Pilot stuff & etc.:
http://www.geocities.com/ResearchTriangle/Lab/1059/
LAB: http://www.scripps.edu/research/metallo
Metalloprotein DB: http://metallo.scripps.edu/

______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

-------------------------------------------------------------------------
To unsubscribe, go to http://www.Hughes.com.au/extras/email/

Next message: Georg Horn: "sorting bug"
Previous message: J. M. Castagnetto: "Re: mSQL & PHP3 & Red Hat 5.2 - oops!"
Maybe in reply to: Keith Hunt: "ACL for mSQL with PHP"
Next in thread: J. M. Castagnetto: "Re: ACL for mSQL with PHP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Mar 04 2002 - 09:04:03 EST