• mysql授权

    1,创建mysql用及授予权限:

    在mysql中输入help grant 会出现下面信息:

    CREATE USER 'jeffrey'@'localhost' IDENTIFIED BY 'mypass';
GRANT ALL ON db1.* TO 'jeffrey'@'localhost';
GRANT SELECT ON db2.invoice TO 'jeffrey'@'localhost';
GRANT USAGE ON *.* TO 'jeffrey'@'localhost' WITH MAX_QUERIES_PER_HOUR 90;
    View Code

     通过grant 命令创建用户并授权:

    mysql> grant all privileges on wordpress.* to 'userdb'@'localhost' identified by 'admin';
Query OK, 0 rows affected (0.00 sec)

    生产环境针对主库(写入主读为辅)用户的授权;

    普通环境:

    1. 本机:lnmplamp环境数据库授权
    2. grant all privileges ON blog.* to blog@localhost identified by 123456
    4. 应用服务器和数据库服务器不在一个主机上授权;
    5. grant all privileges ON blog.* to blog@10.0.0.% identified by 123
    7. 严格的授权:重视安全,忽略了方便;
    8. grant select,insert,update,delete ON blog.* to blog@10.0.0.% identified by 123
    10. 生产环境从库(只读)用户的授权;
    11. grant select ON blog.* to blog@10.0.0.% identified by 123
    13. 查看授权用户oldboy的具体的授权权限 
    14. show grants for oldboy’@’localhost’;

    第一种:授权用户

    1. grant all on test.* to oldboy@127.0.0.% identified by oldboy123
    2. show grants for oldboy@127.0.0.%’; 查看授权用户
    3. +-------------------------------------------------------------------------------------------------------------+
    4. | Grants for root@127.0.0.1|
    5. +-------------------------------------------------------------------------------------------------------------+
    6. | GRANT USAGE ON *.* TO 'root'@'127.0.0.1' IDENTIFIED BY PASSWORD '*6BB4837EB74329105EE4568DDA7DC67ED2CA2AD9' |
    7. | GRANT ALL PRIVILEGES ON `test`.* TO 'root'@'127.0.0.1' |
    8. +-------------------------------------------------------------------------------------------------------------+
    9. 2 rows in set (0.00 sec)  

      

    ■ 第二种:授权方法

     
    1. create user bbs@'172.16.1.1/255.255.255.0' identified by '123456'
    2. 先授权可以登录的
    3. mysql> show grants for bbs@'172.16.1.1/255.255.255.0';
    4. mysql> grant select on wordpress.* to bbs@'172.16.1.1/255.255.255.0';

    授权局域网主机连接远程数据库

    a.一条命令百分号匹配法

     
    1. grant all on *.* totest@10.0.0.%’identified by test123’;

    b、一条命令子网掩码配置法

     
    1. grant all on *.* to test@10.0.0.0/255.255.255.0 identified by test123’;

    c、两条命令实现 
    先创建用户并设置密码;

     
    1. create user test@10.0.0.%’ identified by test123’;
    3. 再对用户授权指定权限和管理库表
    4. grant all on *.* to test@10.0.0.0/255.255.255.0

    最后记得上述每条grant命令都要刷新权限

     
    1. flush privilege

    数据库远程登录

     
    1. mysql -uwordpress -poldboy123 -h 172.16.1.51 -P3306
    2. -h指定IP地址,-P指定服务端口号

    创建类似于root系列的管理员用户,可以创建下级用户的用户

     
    1. grant all privileges on *.* to root@'127.0.0.1' identified by 'oldboy123' with grant option;
    2. 只需要在最后输入with grant option

    回收用户权限

     
      1. REVOKE INSERT ON *.* FROM 'jeffrey'@'localhost';
  • 相关阅读:
    流程图制作在云上 https://www.processon.com/
    白板编程浅谈——Why, What, How
    如何创建一个非常酷的3D效果菜单
    Xcode及模拟器SDK下载
    Swift项目兼容Objective-C问题汇总
    iOS 多个精致动画
    代码注释中的5要与3不要
    如何处理iOS中照片的方向
    会报编译器警告的Xcode 6.3新特性:Nullability Annotations
    iOS应用架构谈 view层的组织和调用方案
  • 原文地址:https://www.cnblogs.com/sykblogs/p/9377002.html
Copyright © 2020-2023  润新知