Secure DB Design

Saintless

I should mention i am in no way a Mysql expert so any help would be appretiated.

I am currently trying to setup a secure DB back end. What i would like is to make use of the grant and revoke privs.

My question is this.

1) Is it possible to have php setup the privs on the sql tables? so that whena user account for the front end is created it can run commands on the mysql db to setup the correct privs on the given tables?

2)Will using the grant and revoke privs in anyway mess up having encrypted rows within mysql? (Using AES)

Thank you for your time.

laserlight

1) Is it possible to have php setup the privs on the sql tables? so that whena user account for the front end is created it can run commands on the mysql db to setup the correct privs on the given tables?

Reading the MySQL5 manual on the GRANT syntax, you will see that you can control privileges for users at table and even column level. You will need to run the SQL statements from a user with the sufficient permissions though (i.e., with the GRANT option).

Saintless

Laserlight,

Thank you for your reply. So i assume that there should be no issues using php to push that command through on account creation.

Thank you very much for your reply.