BestHub
search
Sign in
Tag

Partial Revokes

0 views collected around this technical thread.

Aikesheng Open Source Community
Aikesheng Open Source Community
Mar 19, 2024 · Information Security

Risks of Granting MySQL Authentication Table Permissions and How to Mitigate Them

The article explains how granting ordinary MySQL users full access to authentication tables can lead to severe privilege‑escalation risks, demonstrates the issue with concrete scenarios, and provides mitigation strategies including the use of MySQL 8.0 partial revokes and the principle of least privilege.

DatabaseMySQLPartial Revokes
0 likes · 9 min read
Risks of Granting MySQL Authentication Table Permissions and How to Mitigate Them
Aikesheng Open Source Community
Aikesheng Open Source Community
Feb 7, 2021 · Databases

Using Partial Revokes in MySQL 8.0.16 to Revoke Granular Permissions

This article explains MySQL's Partial Revokes feature introduced in version 8.0.16, showing how to enable the partial_revokes system variable, grant and selectively revoke SELECT privileges at both coarse and fine granularity, and verify the resulting restrictions using SHOW GRANTS and the mysql.user table.

MySQLPartial RevokesPermissions
0 likes · 5 min read
Using Partial Revokes in MySQL 8.0.16 to Revoke Granular Permissions