MySql Grant All Permissions - remove those unnecessary
-
wrote on Apr 4, 2023, 10:08 PM last edited by
For WordPress website, you can leave only the following permissions enabled:
SELECT INSERT UPDATE DELETE ALTER (for updates) CREATE TABLE DROP TABLE INDEX -
For WordPress website, you can leave only the following permissions enabled:
SELECT INSERT UPDATE DELETE ALTER (for updates) CREATE TABLE DROP TABLE INDEXwrote on Apr 4, 2023, 11:05 PM last edited by@marcusquinn Cool stuff! Does this also apply to WooCommerce sites?
-
@marcusquinn Cool stuff! Does this also apply to WooCommerce sites?
wrote on Apr 5, 2023, 12:18 AM last edited by@humptydumpty Yes. Minor risk, but a risk all the same. Doesn't do any harm to harden to best practice and minimising permissions.
-
For WordPress website, you can leave only the following permissions enabled:
SELECT INSERT UPDATE DELETE ALTER (for updates) CREATE TABLE DROP TABLE INDEXwrote on Apr 5, 2023, 5:25 AM last edited by@marcusquinn while it may cause issue with fee plugins, it is also possible to remove even more rights
by adding a specific user for update
https://wordpress.stackexchange.com/questions/6424/mysql-database-user-which-privileges-are-needed -
It's mostly this way already. The credentials given to an app do not allow the app to operate outside the scope of the database. The app cannot drop the database as well. But it's allowed to do whatever it wants inside it's own database.
-
P p44 referenced this topic on Apr 18, 2023, 10:40 AM