MySql Grant All Permissions - remove those unnecessary
-
For WordPress website, you can leave only the following permissions enabled:
SELECT INSERT UPDATE DELETE ALTER (for updates) CREATE TABLE DROP TABLE INDEX
-
@marcusquinn Cool stuff! Does this also apply to WooCommerce sites?
-
@humptydumpty Yes. Minor risk, but a risk all the same. Doesn't do any harm to harden to best practice and minimising permissions.
-
@marcusquinn while it may cause issue with fee plugins, it is also possible to remove even more rights
by adding a specific user for update
https://wordpress.stackexchange.com/questions/6424/mysql-database-user-which-privileges-are-needed -
It's mostly this way already. The credentials given to an app do not allow the app to operate outside the scope of the database. The app cannot drop the database as well. But it's allowed to do whatever it wants inside it's own database.
-