MySQLȨ������
MySQLȨ��
һ��Ȩ�ޱ�
mysql���ݿ��е�3��Ȩ�ޱ���user ��db�� host
Ȩ�ޱ��Ĵ�ȡ�����ǣ�
1)�ȴ�user���е�host�� user�� password��3���ֶ����ж����ӵ�IP���û����������Ƿ����ڱ��У�������ͨ��������֤��
2)ͨ��Ȩ����֤������Ȩ����ʱ������userdbtables_privcolumns_priv��˳�����з��䡣���ȼ���ȫ��Ȩ�ޱ�user������user�ж�Ӧ��Ȩ��ΪY�������û����������ݿ���Ȩ��ΪY�������ټ���db, tables_priv,columns_priv������ΪN������db���м������û���Ӧ�ľ������ݿ⣬���õ�db��ΪY��Ȩ�ޣ�����db��ΪN��������tables_priv�д����ݿ���Ӧ�ľ�������ȡ�ñ��е�Ȩ��Y���Դ����ơ�
����MySQL����Ȩ�ޣ���27����
�����²���������root���ݵ�½����grant��Ȩ����p1@localhost���ݵ�½ִ�и��������
1. usage
���ӣ���½��Ȩ�ޣ�����һ���û����ͻ��Զ�������usageȨ�ޣ�Ĭ�����裩��
mysql> grant usage on *.* to ‘p1′@’localhost’ identified by ‘123′;
��Ȩ��ֻ���������ݿ���½������ִ���κβ�������usageȨ���ܱ����գ�Ҳ��REVOKE�û�������ɾ���û���
2. select
������select��Ȩ�ޣ��ſ���ʹ��select table
mysql> grant select on pyt.* to ‘p1′@’localhost’;
mysql> select * from shop;
3. create
������create��Ȩ�ޣ��ſ���ʹ��create table
mysql> grant create on pyt.* to ‘p1′@’localhost’;
4. create routine
��������create routine��Ȩ�ޣ��ſ���ʹ��{create |alter|drop} {procedure|function}
mysql> grant create routine on pyt.* to ‘p1′@’localhost’;
������create routineʱ���Զ�����EXECUTE, ALTER ROUTINEȨ�����Ĵ����ߣ�
mysql> show grants for ‘p1′@’localhost’;
+—————————————————————————+
Grants for p1@localhost
+————————————————————————–+
| GRANT USAGE ON *.* TO ‘p1′@’localhost’ IDENTIFIED BY PASSWORD ‘*23AE809DDACAF96AF0FD78ED04B6A265E05AA257′ |
| GRANT SELECT, CREATE, CREATE ROUTINE ON `pyt`.* TO ‘p1′@’localhost’|
| GRANT EXECUTE, ALTER ROUTINE ON PROCEDURE `pyt`.`pro_shop1` TO ‘p1′@’localhost’ |
+————————————————————————————-+
5. create temporary tables(ע��������tables������table)
������create temporary tables��Ȩ�ޣ��ſ���ʹ��create temporary tables.
mysql> grant create temporary tables on pyt.* to ‘p1′@’localhost’;
[mysql@mydev ~]$ mysql -h localhost -u p1 -p pyt
mysql> create temporary table tt1(id int);
6. create view
������create view��Ȩ�ޣ��ſ���ʹ��create view
mysql> grant create view on pyt.* to ‘p1′@’localhost’;
mysql> create view v_shop as select price from shop;
7. create user
Ҫʹ��CREATE USER������ӵ��mysql���ݿ���ȫ��CREATE USERȨ�ޣ���ӵ��INSERTȨ�ޡ�
mysql> grant create user on *.* to ‘p1′@’localhost’;
����mysql> grant insert on *.* to p1@localhost;
8. insert
������insert��Ȩ�ޣ��ſ���ʹ��insert into ….. values….
9. alter
������alter��Ȩ�ޣ��ſ���ʹ��alter table
alter table shop modify dealer char(15);
10. alter routine
��������alter routine��Ȩ�ޣ��ſ���ʹ��{alter |drop} {procedure|function}
mysql>grant alter routine on pyt.* to ‘p1′@’ localhost ‘;
mysql> drop procedure pro_shop;
Query OK, 0 rows affected (0.00 sec)
mysql> revoke alter routine on pyt.* from ‘p1′@’localhost’;
[mysql@mydev ~]$ mysql -h localhost -u p1 -p pyt
mysql> drop procedure pro_shop;
ERROR 1370 (42000): alter routine command denied to user ‘p1′@’localhost’ for routine ‘pyt.pro_shop’
11. update
������update��Ȩ�ޣ��ſ���ʹ��update table
mysql> update shop set price=3.5 where article=0001 and dealer=’A';
12. delete
������delete��Ȩ�ޣ��ſ���ʹ��delete from ….where….(ɾ�����еļ�¼)
13. drop
������drop��Ȩ�ޣ��ſ���ʹ��drop database db_name; drop table tab_name;
drop view vi_name; drop index in_name;
14. show database
ͨ��show databaseֻ�ܿ�����ӵ�е�ijЩȨ�����ݿ⣬������ӵ��ȫ��SHOW DATABASESȨ�ޡ�
����p1@localhost�û���˵��û�ж�mysql���ݿ���Ȩ�ޣ������Դ����ݵ�½��ѯʱ��������mysql���ݿ⣺
mysql> show databases;
+——————–+
| Database |
+——————–+
| information_schema|
| pyt |
| test |
+——————–+
15. show view
����ӵ��show viewȨ�ޣ�����ִ��show create view��
mysql> grant show view on pyt.* to p1@localhost;
mysql> show create view v_shop;
16. index
����ӵ��indexȨ�ޣ�����ִ��[create |drop] index
mysql> grant index on pyt.* to p1@localhost;
mysql> create index ix_shop on shop(article);
mysql> drop index ix_shop on shop;
17. excute
ִ�д��ڵ�Functions,Procedures
mysql> call pro_shop1(0001,@a)��
+———+
| article |
+———+
| 0001 |
| 0001 |
+———+
mysql> select @a;
+——+
| @a |
+——+
| 2 |
+——+
18. lock tables
����ӵ��lock tablesȨ�ޣ��ſ���ʹ��lock tables
mysql> grant lock tables on pyt.* to p1@localhost;
mysql> lock tables a1 read;
mysql> unlock tables;
19. references
����REFERENCESȨ�ޣ��û��Ϳ��Խ���������һ���ֶ���Ϊijһ����������Լ����
20. reload
����ӵ��reloadȨ�ޣ��ſ���ִ��flush [tables | logs | privileges]
mysql> grant reload on pyt.* to p1@localhost;
ERROR 1221 (HY000): Incorrect usage of DB GRANT and GLOBAL PRIVILEGES
mysql> grant reload on *.* to ‘p1′@’localhost’;
Query OK, 0 rows affected (0.00 sec)
mysql> flush tables;
21. replication client
ӵ�д�Ȩ���Բ�ѯmaster server��slave server״̬��
mysql> show master status;
ERROR 1227 (42000): Access denied; you need the SUPER,REPLICATION CLIENT privilege for this operation
mysql> grant Replication client on *.* to p1@localhost;
����mysql> grant super on *.* to p1@localhost;
mysql> show master status;
+——————+———-+————–+——————+
| File | Position | Binlog_Do_DB | Binlog_Ignore_DB |
+——————+———-+————–+——————+
| mysql-bin.000006 | 2111 | | |
+——————+———-+————–+——————+
mysql> show slave status;
22. replication slave
ӵ�д�Ȩ���Բ鿴�ӷ�������������������ȡ��������־��
mysql> show slave hosts;
ERROR 1227 (42000): Access denied; you need the REPLICATION SLAVE privilege for this operation
mysql> show binlog events;
ERROR 1227 (42000): Access denied; you need the REPLICATION SLAVE privilege for this operation
mysql> grant replication slave on *.* to p1@localhost;
mysql> show slave hosts;
Empty set (0.00 sec)
mysql>show binlog events;
+—————+——-+—————-+———–+————-+————–+
| Log_name | Pos | Event_type | Server_id| End_log_pos|Info | +—————+——-+————–+———–+————-+—————+
| mysql-bin.000005 | 4 | Format_desc | 1 | 98 | Server ver: 5.0.77-log, Binlog ver: 4 | |mysql-bin.000005|98|Query|1|197|use `mysql`; create table a1(i int)engine=myisam|
……………………………………
23. Shutdown
�ر�MySQL��
[mysql@mydev ~]$ mysqladmin shutdown
�������ӣ�
[mysql@mydev ~]$ mysql
ERROR 2002 (HY000): Can’t connect to local MySQL server through socket ‘/tmp/mysql.sock’ (2)
[mysql@mydev ~]$ cd /u01/mysql/bin
[mysql@mydev bin]$ ./mysqld_safe &
[mysql@mydev bin]$ mysql
24. grant option
ӵ��grant option���Ϳ��Խ��Լ�ӵ�е�Ȩ�����������û����������Լ��Ѿ�ӵ�е�Ȩ�ޣ�
mysql> grant Grant option on pyt.* to p1@localhost;
mysql> grant select on pyt.* to p2@localhost;
25. file
ӵ��fileȨ�ſ���ִ�� select ..into outfile��load data infile…���������Dz�Ҫ��file, process, superȨ����������Ա�������˺ţ������������صİ�ȫ������
mysql> grant file on *.* to p1@localhost;
mysql> load data infile ‘/home/mysql/pet.txt’ into table pet;
26. super
����Ȩ�������û���ֹ�κβ�ѯ����ȫ�ֱ�����SET���䣻ʹ��CHANGE MASTER��PURGE MASTER LOGS��
mysql> grant super on *.* to p1@localhost;
mysql> purge master logs before ‘mysql-bin.000006′;
27. process
ͨ������Ȩ�ޣ��û�����ִ��SHOW PROCESSLIST��KILL���Ĭ�������£�ÿ���û�������ִ��SHOW PROCESSLIST�������ֻ�ܲ�ѯ���û��Ľ��̡�
mysql> show processlist;
+—-+——+———–+——+———+——+——-+——————+
| Id | User | Host | db | Command | Time | State | Info |
+—-+——+———–+——+———+——+——-+——————+
| 12 | p1 | localhost | pyt | Query | 0 | NULL | show processlist |
+—-+——+———–+——+———+——+——-+——————+
���⣬
����Ȩ�ޣ��� super�� process�� file�ȣ����ܹ�ָ��ij�����ݿ⣬on����������*.*
mysql> grant super on pyt.* to p1@localhost;
ERROR 1221 (HY000): Incorrect usage of DB GRANT and GLOBAL PRIVILEGES
mysql> grant super on *.* to p1@localhost;
Query OK, 0 rows affected (0.01 sec)
- ת����ע����Դ��ITѧϰ�� ��ַ��http://www.t086.com/ �����������Ƽ�������
- �ر������� ��վ�������ر�������ֹת�ص�ר�������������¿�������ת�أ���������ע��������ԭʼ���ߡ����°�Ȩ������ԭʼ�������С����ڱ���վת�����µĸ��˺���վ�����DZ�ʾ������л�⡣������վת�ص������а�Ȩ��������ϵ���ǣ����ǻᾡ�����Ը�����
- �������е���ɫ
- �������ж�IP��ַ��A��B���C��
- ������ϵ��Ц�� (ʷ����ȫ��
- ��Google���������ŵ���ͨv4.0
- ���ٶ�ͳ��URL��hm������utm�����Ķ�Ӧ��ϵ
- ���������ԡ���װ Windows XP ����ϵͳ��ͼ��ȫ����
- ��ƻ������MACbook Air���ݼ���ȫ
- ��Linux��ʹ��host��dig��nslookup��ѯDNS
- �����Լ���VPS�Google��������
- ��С�ڴ�VPS֮Nginx+PHP-fpm�߸����Ż���ѹ�����Է���