how to setup user privileges for a single column

klansman

hi everyone!

i am developing php+mysql software for some time now...

the kind of software that i develop is for personal use (to a point...) and consists in a back-office and a frontend.

i use a strategy, which made up myself (i haven't read it anywhere, so i don't know if that is really useful/good idea... read on) that consists in using different database users for the backoffice and frontend.

for the frontend i use a user with no password and with select privileges only. i guess that finding out that user name can't do harm the database much - no changes possible.

for the backoffice, i use an authenticated user with select/insert/update/delete privs.

It worked ok until i want to do some very simple data-mining, consisting in a hit-counter only.

now i need to change the front-end database user to be able to make updates... but i want to do it only in the counter columns. if anyone hacks the user/database, they can only update counters...

i think i have to do something to mysql.columns_priv, and i did, but it still doesn't work.

can anyone explain to me how this works? what changes (other than mysql.columns_priv) must i make to make that happen??

thank you very much!

[]

nnichols

Use the GRANT statement -

GRANT Update (col1, col2) ON db.table TO 'blah'@'blah' IDENTIFIED BY 'blah'

klansman

thanks. i will try.

any more ways to do it?

[]

klansman

tried and tested.

i got it right the first time after all, but there must have been some problem that kept me from getting clearence.

i did it with the grant instruction, and it worked.
i checked out what did the grant instruction change and erased it.
i tried again by inserting directly into the database and it worked ok again.

thanks much!

[]