Search
About me
-
Name: Shlomi Noach
Location: Israel
I am a software engineer, DBA and MySQL geek.
-
Name: Shlomi Noach
-
Speaking
-
Recent Posts
Similar Posts
Archives
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- June 2008
Blogroll
Categories
- Development (RSS) (10)
- Linux (RSS) (1)
- MySQL (RSS) (279)
- OpenOffice (RSS) (1)
Meta
Tag Cloud
- Analysis Backup Books common_schema community Configuration Data Types Development Execution plan Graphs Hack Humor Indexing INFORMATION_SCHEMA InnoDB Installation Linux logs memcached Monitoring mycheckpoint MyISAM mysqlconf mysqldump New Features openark kit Open Source Opinions PerconaLive Performance Planet python QueryScript Replication Schema scripts Security Speaking Sphinx SQL sql_mode Stored routines Syntax Triggers Web
'Security' Tag
-
MySQL security tasks easily solved with common_schema
January 17, 2013Here are three security tasks I handled, which I'm happy to say were easily solved with common_schema's views and routines (with no prior planning). Two are so easy, that I actually now integrated them into common_schema 1.3: Duplicate a user (create new user with same privileges as another's) Find users with identical set of grants [...]
-
common_schema: 1.3: security goodies, parameterized split(), json-to-xml, query checksum
January 14, 2013common_schema 1.3 is released and is available for download. New and noteworthy in this version: Parameterized split(): take further control over huge transactions by breaking them down into smaller chunks, now manually tunable if needed duplicate_grantee(): copy+paste existing accounts along with their full set of privileges similar_grants: find which accounts share the exact same set [...]
-
common_schema 1.2: security, partition management, processes, QueryScript goodies
November 13, 2012common_schema 1.2 is released! This version comes shortly after 1.1, yet contains quite a few interesting goodies: Account blocking Security audit RANGE partition management Slave status Better blocking and idle transaction management QueryScript goodies: echo, report while-otherwise statement; foreach-otherwise statement Better variable scope handling Complete support for variable expansion Transaction support within QueryScript More summary [...]
-
common_schema rev. 68: eval(), processlist_grantees, candidate_keys, easter_day()
September 6, 2011Revision 68 of common_schema is out, and includes some interesting features: eval(): Evaluates the queries generated by a given query match_grantee(): Match an existing account based on user+host processlist_grantees: Assigning of GRANTEEs for connected processes candidate_keys: Listing of prioritized candidate keys: keys which are UNIQUE, by order of best-use. easter_day(): Returns DATE of easter day [...]
-
Finding CURRENT_USER for any user
August 9, 2011A MySQL account is a user/host combination. A MySQL connection is done by a user connecting from some host. However, the user/host from which the connection is made are not the same as the user/host as specified in the account. For example, the account may be created thus: CREATE USER 'temp'@'10.0.0.%' IDENTIFIED BY '123456'; The [...]
-
Announcing common_schema: common views & routines for MySQL
July 13, 2011Today I have released common_schema, a utility schema for MySQL which includes many views and functions, and is aimed to be installed on any MySQL server. What does it do? There are views answering for all sorts of useful information: stuff related to schema analysis, data dimensions, monitoring, processes & transactions, security, internals... There are [...]
-
ROUTINE_PRIVILEGES implementation
June 22, 2011Following up on MySQL security: inconsistencies, and on MySQL bug #61596, I was thinking it may take a long time till the non-existent ROUTINE_PRIVILEGES view is implemented. Here's my own implementation of the view. I've followed the somewhat strange conventions used in the *_PRIVILEGES tables in INFORMATION_SCHEMA, where the IS_GRANTABLE is a separate column, although [...]
-
MySQL security: inconsistencies
June 22, 2011Doing some work with MySQL security, I've noticed a few inconsistencies. They're mostly not-too-terrible for daily work, except they get in my way right now. The ALL PRIVILEGES inconsistency The preferred way of assigning account privileges in MySQL is by way of using GRANT. With GRANT, one assigns one or more privileges to an account, [...]
-
Pop quiz: what is the most basic privilege an account can be assigned with?
June 14, 2011I asked this during my presentation on the MySQL Conference this year. And I got a unanimous answer from the crowd. Take a moment to think this over, before coming up with the answer. Meanwhile, an intermezzo. Tam dam dam... Pom pom Pom pom Pom pom... If your answer is that the most basic privilege [...]
-
Recovering a MySQL `root` password: the fourth solution
March 22, 2011Have just read Darren Cassar's Recovering a MySQL `root` password – Three solutions. There's a fourth solution: using an init-file, which leads to just one restart of the database instead of two. It also avoids the security issue involved with using skip-grant-tables. I've written all about it before on Dangers of skip-grant-tables. Darren's 1st advice [...]