 | | | -none- | -none- 2007-10-11 - By Michael Cole
Back
My take on this never have no password..
At no time any data you have someone else will also want therefore
running a open query with nopasword on the system for a couple of
hours will get access to your system..
Allways use passwords, If the users dont want passwords then you dont
need any membership..
And accept someone will run away with your data.
If you are worried about your password or access use ssl across the
net, because you cannot trust everyone between you and your site. Also
what happens if it goes across a wireless link and all someone is
doing is listening..
Regards Michael
On 10/10/07, Stephen Sunderlin <stephen.sunderlin@(protected)> wrote:
> QUESTION: What are the most secure permissions settings for administrator
> access to connect to my server without using a static IP address?
>
>
>
> MY ISP changes my DSL ip address almost daily so when I log on to MySQL
> Administrator with 'myusername'@'currentipaddress' using password
> 'mypassword'
>
> I have grant permission to the new ip address.
>
>
>
> I also have and account: 'username'@'%' with no password with SELECT,
> INSERT, UPDATE and DELETE privileges only for general users for this
> membership site. Are there any security issues with this? Any input or
> direction for informed reading on the issue would be appreciated.
>
>
>
> Thanks.
>
>
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=mysql@(protected)
|
|
|