Jump to content


Hosting Developers Payment Shipping Accounting Templates Marketing Books

Our Partners


Latest News: (loading..)

- - - - -

MySQL user privileges for osCommerce

Started by isumitg, Apr 16 2012 01:50 PM
database user database user privileges access mysql user access

This topic has been archived. This means that you cannot reply to this topic.
1 reply to this topic

#-19   isumitg

isumitg
  • Members
  • 29 posts

Posted 16 April 2012 - 01:50 PM

Out of the below mentioned MySQL user privileges, which are necessary for osCommerce to run without any problems? (both back-end and front-end)
I am just worried if it is a security concern if I allow all privileges? Is there any documentation / tutorial which I can refer?

ALTER
CREATE
CREATE ROUTINE
CREATE TEMPORARY TABLES
CREATE VIEW
DELETE
DROP
EXECUTE
INDEX
INSERT
LOCK TABLES
REFERENCES
SELECT
SHOW VIEW
TRIGGER
UPDATE

Edited by isumitg, 16 April 2012 - 01:51 PM.

#-18   MrPhil

MrPhil
  • Members
  • 4,135 posts

Posted 19 April 2012 - 05:18 PM

A quick search of the code reveals:

ALTER, EXECUTE, INDEX, LOCK TABLES, REFERENCES, SHOW VIEW, and TRIGGER don't seem to be used

CREATE  * and DROP seems to only be used by admin/backup and install

SELECT, DELETE, and UPDATE are widely used

You can always restore specific permissions if osC complains that it can't perform a certain database operation.

Once you have installed osC, and will use phpMyAdmin to back up, you could get rid of permissions for CREATE * and DROP, if that's what worries you.

Edited by MrPhil, 19 April 2012 - 05:19 PM.

Back to Installation and Configuration


  1. osCommerce Support Forum
  2. osCommerce Online Merchant v2.x
  3. Installation and Configuration
  4. Privacy Policy
  5. Forum Rules ·