MySql Grant All Permissions

  • Resolved garmatinc

    (@garmatinc)


    1 year, 9 months ago

    for the section MySql Grant All Permissions it says this under info

    If an attacker gains access to your wp-config.php file and gets the MySQL username and password, he’ll be able to login to that database and do whatever that account allows.

    That’s why it’s important to keep the account’s privileges to a bare minimum.

    For instance, if you’re not installing any new plugins or updating WP, that account doesn’t need the CREATE or DROP table privileges.

    For regular, day-to-day usage these are the recommended privileges: SELECT, INSERT, UPDATE and DELETE.

    Does this mean that i will have to adjust permissions each time i want to update a plugin because we update daily and this could become bothersome.

    Please advise.

Viewing 3 replies - 1 through 3 (of 3 total)
Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘MySql Grant All Permissions’ is closed to new replies.