I find myself to more and more contracting to developers where I need to let them into a single site and have access to a single MySQL database. I have very little experience with MySQL ACL management. OK I created this site:
dev.hinduismtoday.com for a 3rd party developer to do his work in.. for example purposes:
admin user: mango password: smoothie
OK. now: I get a new MySQL User "Mango" with permissions "None"... to access no databases at all since we did not set one up for the new site.
now I need to let this developer have access to the old data base that is live on the old site ... call it
I gave the MySQL user "mango" broader permissions, and also the option to come in from any host. But now it seems he can see all the databases... why? not just bluesky. I thought I would have to some how tie the user "mango" to access database "bluesky" first, but instead he sees all the databases.
but, at the same time, (I had created a web min user for mango when creating the new server) if I try to log in to web min as "mango" I do get in and he is restricted to the new domain. but, the MySQL server wants the MySQL Administrator user "usually root" to access the MySQL server. But I don't want to give these people root access, do we?
Sorry if this is muddled. I'm used to dealing with PostGreSQL pghba which seems a lot simpler...