stackoom
  简体   繁体   中英

prevent mysql user change password of other user

 原文  2020-12-30 08:06:32       mysql

Question

I have two users:

user1 : all privleges, no grant option.

user2 : all privleges, with grant option.

user1 , connect to database and change password of user2 .
How can I prevent this?

1 answers

solution1
 0  2020-12-30 08:38:30

The GRANT privilege isn't related to passwords. It determines if user is able to change permissions for others.

In Set Password we can read:

Setting the password for a named account (with a FOR clause) requires the UPDATE privilege for the mysql system schema . Setting the password for yourself (for a nonanonymous account with no FOR clause) requires no special privileges.

The recommend way to change passwords is the ALTER USER statement but that documentation section basically states the same:

In most cases, ALTER USER requires the global CREATE USER privilege, or the UPDATE privilege for the mysql system schema .

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Prevent MySQL login with no user or password How to change mysql user password? MySQL hands with `> after attempting to change user password Change mysql user password using command line How change MySQL instance root user password? MySQL root user password change automation as MySQL root user: how to switch to other user without password MySQL prevent user to take codes from other user MYSQL loses user password error in mysql user password
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM