深圳全飞鸿

标题: DBA帐号的产生过程 [打印本页]
作者: zhgc    时间: 2021-5-27 18:36
标题: DBA帐号的产生过程
本帖最后由 zhgc 于 2021-5-28 11:25 编辑

如果勾选了所有SMT数据库的权限提交后,执行的语句如下:

GRANT SELECT, SUPER ON *.* TO 'dba'@'%' IDENTIFIED BY PASSWORD '*F7DB73F0C57E9E4635B6732A2B3D6F8923894112'

  1. root@127.0.0.1 on
  2. root@127.0.0.1 on
  3. set sql_mode='';
  4. delete from mysql.db where user='dba' and host='%';
  5. delete from mysql.tables_priv where user='dba' and host='%';
  6. delete from mysql.columns_priv where user='dba' and host='%';
  7. delete from mysql.procs_priv where user='dba' and host='%';
  8. insert into mysql.db(host, db, user, Select_priv, Insert_priv, Update_priv, Delete_priv, Create_priv, Drop_priv, Grant_priv, References_priv, Index_priv, Alter_priv, create_tmp_table_priv, lock_tables_priv, Create_view_priv, Show_view_priv, Create_routine_priv, Alter_routine_priv, Execute_priv, event_priv, trigger_priv) values('%', 'sfc', 'dba',                                            'Y','Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y');
  9. insert into mysql.db(host, db, user, Select_priv, Insert_priv, Update_priv, Delete_priv, Create_priv, Drop_priv, Grant_priv, References_priv, Index_priv, Alter_priv, create_tmp_table_priv, lock_tables_priv, Create_view_priv, Show_view_priv, Create_routine_priv, Alter_routine_priv, Execute_priv, event_priv, trigger_priv) values('%', 'smt', 'dba',                                            'Y','Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y');
  10. insert into mysql.db(host, db, user, Select_priv, Insert_priv, Update_priv, Delete_priv, Create_priv, Drop_priv, Grant_priv, References_priv, Index_priv, Alter_priv, create_tmp_table_priv, lock_tables_priv, Create_view_priv, Show_view_priv, Create_routine_priv, Alter_routine_priv, Execute_priv, event_priv, trigger_priv) values('%', 'syant', 'dba',                                            'Y','Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y', 'Y');
  11. flush privileges;
复制代码


得到的权限清单如下:
GRANT ALL PRIVILEGES ON `sfc`.* TO 'dba'@'%' WITH GRANT OPTION;
GRANT ALL PRIVILEGES ON `smt`.* TO 'dba'@'%' WITH GRANT OPTION;

很奇怪,直接拿这条语句执行会失败


作者: zhgc    时间: 2021-5-27 19:48
DBA的权限都在顶层:


GRANT SELECT, SUPER ON *.* TO 'dba'@'%' IDENTIFIED BY PASSWORD '*F7DB73F0C57E9E4635B6732A2B3D6F8923894112';
GRANT ALL PRIVILEGES ON `sfc`.* TO 'dba'@'%' WITH GRANT OPTION;
GRANT ALL PRIVILEGES ON `smt`.* TO 'dba'@'%' WITH GRANT OPTION;





欢迎光临 深圳全飞鸿 (http://www.nagomes.com/disc/) Powered by Discuz! X3.2