From: Enrico Weigelt <weigelt@metux.de>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Problem upgrading mediawiki
Date: Fri, 5 Jan 2007 21:35:21 +0100 [thread overview]
Message-ID: <20070105203521.GD22582@nibiru.local> (raw)
In-Reply-To: <459A7AB8.8060008@badapple.net>
* kashani <kashani-list@badapple.net> wrote:
> Some people prefer to give their webapps limited insert, update, and
> delete access and it's likely that Mediawiki's updates require alter,
> create, drop, and file access which might be why they say to use an
> account with root privileges.
For larger (not web-only) applications I can understand giving
several subsystems specific access via separate views. But for
an monolithic web(-only)-app like mediawiki, its really useless.
The worst damage an attacker can do is deleting or changing data,
database ownership is not needed for that.
Does anyone known some way (w/o crawling too deep in the code)
for givinb mediawiki the ownership of the database and never ever
require superuser privileges anymore ?
cu
--
---------------------------------------------------------------------
Enrico Weigelt == metux IT service - http://www.metux.de/
---------------------------------------------------------------------
Please visit the OpenSource QM Taskforce:
http://wiki.metux.de/public/OpenSource_QM_Taskforce
Patches / Fixes for a lot dozens of packages in dozens of versions:
http://patches.metux.de/
---------------------------------------------------------------------
--
gentoo-user@gentoo.org mailing list
next prev parent reply other threads:[~2007-01-05 20:45 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-12-31 17:20 [gentoo-user] Problem upgrading mediawiki Enrico Weigelt
2006-12-31 17:28 ` [gentoo-user] " Enrico Weigelt
2007-01-01 2:24 ` [gentoo-user] " Boyd Stephen Smith Jr.
2007-01-01 8:56 ` Jigme Datse
2007-01-01 17:48 ` Enrico Weigelt
2007-01-02 15:31 ` kashani
2007-01-05 20:35 ` Enrico Weigelt [this message]
2007-01-05 21:41 ` Enrico Weigelt
2007-01-06 21:20 ` Enrico Weigelt
2007-01-05 20:28 ` Enrico Weigelt
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20070105203521.GD22582@nibiru.local \
--to=weigelt@metux.de \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox