From owner-freebsd-questions Tue May 29 22:37:30 2001 Delivered-To: freebsd-questions@freebsd.org Received: from e450.mnsi.net (e450.mnsi.net [206.48.122.98]) by hub.freebsd.org (Postfix) with ESMTP id 3F5F337B422 for ; Tue, 29 May 2001 22:37:27 -0700 (PDT) (envelope-from mail@max-info.net) Received: from lan4 (dyn216-8-131-222.ADSL.mnsi.net [216.8.131.222]) by e450.mnsi.net (8.11.2/8.11.2) with SMTP id f4U5bLk13493; Wed, 30 May 2001 01:37:21 -0400 (EDT) Message-ID: <00de01c0e8ca$56b4c820$fd00a8c0@Home> From: "Ryan Masse" To: "Bill Moran" Cc: "FreeBSD-Questions" References: <3B144374.996414E9@optonline.net> <3B144ED5.F86EE61B@iowna.com> <3B148021.60CB7680@optonline.net> <00a901c0e8c7$d05a7920$fd00a8c0@Home> <3B14855C.E998927E@iowna.com> Subject: Re: mysql tcp connection Date: Wed, 30 May 2001 01:35:29 -0400 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG security wise i had removed all anonymous users from the user table. the '%' was for test purposes. A more defined user@'ip/subnet' will be implemented once the remote connection has proven itself. Ryan > That's a rather knock-down, drag-out approach to security. You basically > removed all restrictions on what host a user can connect from. You may > have also remove all access restrictions altogether. Have you attempted > remote login without any username or password to make sure it will deny > you? > While this may have been what you intended for youself. I don't > personally recommend that everyone use that approach. > Take the time to understand the MySQL security model before you put the > box into production. There are some excellent tutorials on the MySQL web > site. I also heavily recommend setting up a test box and playing with > the permissions for a while until you know what you're doing through > experience. > Remember, you too can be a statistic. > > Ryan Masse wrote: > > > > I have just went through this a few hours ago linking the remote mysql db > > from within access 2000. > > > > First you need to download the odbc driver for mysql: > > http://www.mysql.com/downloads/api-myodbc.html > > > > I encountered a problem on the unix box where it would give me an access > > denied. I had to add the user as th following; > > > > grant all privileges on database.* to user@"%" identified by 'somepasse'; > > > > then i had to remove all anonymous users from the mysql.user db; > > > > delete from mysql.user where User=' '; flush privileges; > > > > once i did that i could connect via that user locally on the unix box and > > after entering the DSN on the MS box i could connect and read all the > > records. > > > > If you need a more complete description email me. > > -- > If a bird in the hand > is worth two in the bush, > then what can I get for > two hands in the bush? > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message