skyliner
07-29-1999, 08:28 AM
Hi there,
I wonder if there is a default MySQL user able to connect to Futurequest MySQL engine and read the mysql user table. The web interface I'm playing with (phpMyAdmin) needs a user/pasword pair which he uses to verify the real user/password pair when using advanced authentification, allowing visitors to log in as any valid MySQL user via HTTP-Auth. Using such two-step authentification seems to be a lot more secure than using basic authentification (storing passwords in a config file which is probably accesible to other shell or ftp users).
Skyliner
[This message has been edited by skyliner (edited 07-29-99)]
I wonder if there is a default MySQL user able to connect to Futurequest MySQL engine and read the mysql user table. The web interface I'm playing with (phpMyAdmin) needs a user/pasword pair which he uses to verify the real user/password pair when using advanced authentification, allowing visitors to log in as any valid MySQL user via HTTP-Auth. Using such two-step authentification seems to be a lot more secure than using basic authentification (storing passwords in a config file which is probably accesible to other shell or ftp users).
Skyliner
[This message has been edited by skyliner (edited 07-29-99)]