Elxis CMS Forum

Support => Security => Topic started by: jhouns on July 14, 2012, 12:03:28

Title: Multiple MySQL User permission changes
Post by: jhouns on July 14, 2012, 12:03:28

In light of the bug report last night I had an idea this morning. Whenever developing any smaller scale applications (my PHP isn't good enough to help with Elxis but my programming principles are fine) an individual account is used for each basic operation i.e. You have an account that's solely for searching, one that's solely for updating and you connect using each user when each command is appropriate.

During finding the sef was unsanitised (https://forum.elxis.org/index.php?topic=5144.msg45896#msg45896) I noticed I could query the user table from the generic query mysql account, in a similar way to using multiple accounts for multiple operations (SELECT, INSERT, etc) Why not create a mysql user solely for the use of login table access (elx_users).

so:

query@localhost - Permissions: SELECT, ALL TABLES but NOT elx_users.
userQuery@localhost - Permissions: SELECT, elx_users.

then in the relevant class that deals with login execution, connect as the userquery user, this way if there's a breach in security (say in a generic page load script) access to the user table will still be denied due to a permissions error that you can't work around (currently).

Opinions?


EDIT: Moved this edit to another thread.

Title: Re: Multiple MySQL User permission changes
Post by: datahell on July 14, 2012, 19:27:42

This solution is too complex for the majority of users.

Title: Re: Multiple MySQL User permission changes
Post by: jhouns on July 15, 2012, 00:12:20

A completely valid counter-proposition. Thanks for your feedback.