severity 306877 wishlist retitle 306877 README.Debian: clarify use of debian-sys-maint thanks
Hello On 2005-04-28 The Anarcat wrote: > The debian-sys-maint user is setup in the postinst to have mostly ALL > PRIVILEGES, WITH GRANT, even. As I understand it (and as the > README.Debian documents), the debian-sys-maint user is mainly used to > "stop the server as they would require knowledge of the mysql root users > password else." That was correct in the past where this user really only had the RELOAD and SHUTDOWN privileges but nowadays it also serves as a more general user for e.g. packages that ask the user if they may create a database during installation and the script that runs when starting the mysql server and does a CHECK TABLES which also requires additional privileges. > If we give all privileges, with grant, to the debian-sys-maint, why have > such a user at all? Why not simply put the root password there, as there > is not a big difference between the two users anyways? But it's very likely that the admin of the machine will change the root password and keep the new one secret to himself! So thanks at least for reporting something that looked like a security problem but as the user really requires those privileges I downgrade it to withlist to remind me to update the description in README.Debian. bye, -christian- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
