zoukankan      html  css  js  c++  java

  • mysql授权

    1,创建mysql用及授予权限:

    在mysql中输入help grant 会出现下面信息:

    CREATE USER 'jeffrey'@'localhost' IDENTIFIED BY 'mypass';
GRANT ALL ON db1.* TO 'jeffrey'@'localhost';
GRANT SELECT ON db2.invoice TO 'jeffrey'@'localhost';
GRANT USAGE ON *.* TO 'jeffrey'@'localhost' WITH MAX_QUERIES_PER_HOUR 90;
    View Code

     通过grant 命令创建用户并授权:

    mysql> grant all privileges on wordpress.* to 'userdb'@'localhost' identified by 'admin';
Query OK, 0 rows affected (0.00 sec)

    生产环境针对主库(写入主读为辅)用户的授权;

    普通环境:

    1. 本机:lnmplamp环境数据库授权
    2. grant all privileges ON blog.* to blog@localhost identified by 123456
    4. 应用服务器和数据库服务器不在一个主机上授权;
    5. grant all privileges ON blog.* to blog@10.0.0.% identified by 123
    7. 严格的授权:重视安全,忽略了方便;
    8. grant select,insert,update,delete ON blog.* to blog@10.0.0.% identified by 123
    10. 生产环境从库(只读)用户的授权;
    11. grant select ON blog.* to blog@10.0.0.% identified by 123
    13. 查看授权用户oldboy的具体的授权权限 
    14. show grants for oldboy’@’localhost’;

    第一种:授权用户

    1. grant all on test.* to oldboy@127.0.0.% identified by oldboy123
    2. show grants for oldboy@127.0.0.%’; 查看授权用户
    3. +-------------------------------------------------------------------------------------------------------------+
    4. | Grants for root@127.0.0.1|
    5. +-------------------------------------------------------------------------------------------------------------+
    6. | GRANT USAGE ON *.* TO 'root'@'127.0.0.1' IDENTIFIED BY PASSWORD '*6BB4837EB74329105EE4568DDA7DC67ED2CA2AD9' |
    7. | GRANT ALL PRIVILEGES ON `test`.* TO 'root'@'127.0.0.1' |
    8. +-------------------------------------------------------------------------------------------------------------+
    9. 2 rows in set (0.00 sec)  

      

    ■ 第二种:授权方法

     
    1. create user bbs@'172.16.1.1/255.255.255.0' identified by '123456'
    2. 先授权可以登录的
    3. mysql> show grants for bbs@'172.16.1.1/255.255.255.0';
    4. mysql> grant select on wordpress.* to bbs@'172.16.1.1/255.255.255.0';

    授权局域网主机连接远程数据库

    a.一条命令百分号匹配法

     
    1. grant all on *.* totest@10.0.0.%’identified by test123’;

    b、一条命令子网掩码配置法

     
    1. grant all on *.* to test@10.0.0.0/255.255.255.0 identified by test123’;

    c、两条命令实现 
    先创建用户并设置密码;

     
    1. create user test@10.0.0.%’ identified by test123’;
    3. 再对用户授权指定权限和管理库表
    4. grant all on *.* to test@10.0.0.0/255.255.255.0

    最后记得上述每条grant命令都要刷新权限

     
    1. flush privilege

    数据库远程登录

     
    1. mysql -uwordpress -poldboy123 -h 172.16.1.51 -P3306
    2. -h指定IP地址,-P指定服务端口号

    创建类似于root系列的管理员用户,可以创建下级用户的用户

     
    1. grant all privileges on *.* to root@'127.0.0.1' identified by 'oldboy123' with grant option;
    2. 只需要在最后输入with grant option

    回收用户权限

     
      1. REVOKE INSERT ON *.* FROM 'jeffrey'@'localhost';
  • 相关阅读:
    CF763C Timofey and Remoduling
    CF762E Radio Stations
    CF762D Maximum Path
    CF763B Timofey and Rectangles
    URAL1696 Salary for Robots
    uva10884 Persephone
    LA4273 Post Offices
    SCU3037 Painting the Balls
    poj3375 Network Connection
    Golang zip压缩文件读写操作
  • 原文地址:https://www.cnblogs.com/sykblogs/p/9377002.html
Copyright © 2011-2022 走看看