zoukankan      html  css  js  c++  java

  • mysql授权

    1,创建mysql用及授予权限:

    在mysql中输入help grant 会出现下面信息:

    CREATE USER 'jeffrey'@'localhost' IDENTIFIED BY 'mypass';
GRANT ALL ON db1.* TO 'jeffrey'@'localhost';
GRANT SELECT ON db2.invoice TO 'jeffrey'@'localhost';
GRANT USAGE ON *.* TO 'jeffrey'@'localhost' WITH MAX_QUERIES_PER_HOUR 90;
    View Code

     通过grant 命令创建用户并授权:

    mysql> grant all privileges on wordpress.* to 'userdb'@'localhost' identified by 'admin';
Query OK, 0 rows affected (0.00 sec)

    生产环境针对主库(写入主读为辅)用户的授权;

    普通环境:

    1. 本机:lnmplamp环境数据库授权
    2. grant all privileges ON blog.* to blog@localhost identified by 123456
    4. 应用服务器和数据库服务器不在一个主机上授权;
    5. grant all privileges ON blog.* to blog@10.0.0.% identified by 123
    7. 严格的授权:重视安全,忽略了方便;
    8. grant select,insert,update,delete ON blog.* to blog@10.0.0.% identified by 123
    10. 生产环境从库(只读)用户的授权;
    11. grant select ON blog.* to blog@10.0.0.% identified by 123
    13. 查看授权用户oldboy的具体的授权权限 
    14. show grants for oldboy’@’localhost’;

    第一种:授权用户

    1. grant all on test.* to oldboy@127.0.0.% identified by oldboy123
    2. show grants for oldboy@127.0.0.%’; 查看授权用户
    3. +-------------------------------------------------------------------------------------------------------------+
    4. | Grants for root@127.0.0.1|
    5. +-------------------------------------------------------------------------------------------------------------+
    6. | GRANT USAGE ON *.* TO 'root'@'127.0.0.1' IDENTIFIED BY PASSWORD '*6BB4837EB74329105EE4568DDA7DC67ED2CA2AD9' |
    7. | GRANT ALL PRIVILEGES ON `test`.* TO 'root'@'127.0.0.1' |
    8. +-------------------------------------------------------------------------------------------------------------+
    9. 2 rows in set (0.00 sec)  

      

    ■ 第二种:授权方法

     
    1. create user bbs@'172.16.1.1/255.255.255.0' identified by '123456'
    2. 先授权可以登录的
    3. mysql> show grants for bbs@'172.16.1.1/255.255.255.0';
    4. mysql> grant select on wordpress.* to bbs@'172.16.1.1/255.255.255.0';

    授权局域网主机连接远程数据库

    a.一条命令百分号匹配法

     
    1. grant all on *.* totest@10.0.0.%’identified by test123’;

    b、一条命令子网掩码配置法

     
    1. grant all on *.* to test@10.0.0.0/255.255.255.0 identified by test123’;

    c、两条命令实现 
    先创建用户并设置密码;

     
    1. create user test@10.0.0.%’ identified by test123’;
    3. 再对用户授权指定权限和管理库表
    4. grant all on *.* to test@10.0.0.0/255.255.255.0

    最后记得上述每条grant命令都要刷新权限

     
    1. flush privilege

    数据库远程登录

     
    1. mysql -uwordpress -poldboy123 -h 172.16.1.51 -P3306
    2. -h指定IP地址,-P指定服务端口号

    创建类似于root系列的管理员用户,可以创建下级用户的用户

     
    1. grant all privileges on *.* to root@'127.0.0.1' identified by 'oldboy123' with grant option;
    2. 只需要在最后输入with grant option

    回收用户权限

     
      1. REVOKE INSERT ON *.* FROM 'jeffrey'@'localhost';
  • 相关阅读:
    查找文件的绝对路径
    购买成都二手商品房交易流程(卖方存在欠银行贷款的情况)
    针对CCTV摄像头的扫描爆破工具 :Cameradar
    交换机的基本配置
    思科交换机和路由器的远程配置
    安装Windows和Ubuntu双系统--Ubuntu安装过程识别不了硬盘
    SpringBoot 配置
    Tomcat9在CentOS7上启动慢解决办法,实测可行
    Linux安装JDK
    电影分享——《小丑》
  • 原文地址:https://www.cnblogs.com/sykblogs/p/9377002.html
Copyright © 2011-2022 走看看