Re: [Full-Disclosure] MySQL and the user "su"
From: Kristian Koehntopp (kris_at_koehntopp.de)
Date: 12/31/04
- Previous message: Frank Knobbe: "Re: [Full-Disclosure] /bin/rm file access vulnerability"
- Next in thread: Andrew Farmer: "Re: [Full-Disclosure] MySQL and the user "su""
- Maybe reply: Andrew Farmer: "Re: [Full-Disclosure] MySQL and the user "su""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 31 Dec 2004 08:11:45 +0100 To: Sascha Wolf <swolf@x-project.net>
> I have today determined that I can connect to a local MySQL-server per
> "mysql -usu". I regard that to error, can that someone confirm?
You have entries in your mysql.user table that contain the hostname
localhost and have an empty username field, I presume. If so, please
read up on MySQL permissions.
Kristian
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Frank Knobbe: "Re: [Full-Disclosure] /bin/rm file access vulnerability"
- Next in thread: Andrew Farmer: "Re: [Full-Disclosure] MySQL and the user "su""
- Maybe reply: Andrew Farmer: "Re: [Full-Disclosure] MySQL and the user "su""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
