[Typo3-dev] Minor Db security idea

[Martin Kutschker]

Hi!

Just a little idea:

Use two instead of one DB user. One would be used for FE users the other for BE users. The DB user for FE users should not have write access to all tables/columns, it shouldn't have read access to some tables and limited rights for Mysql admin tasks.

Of course it's up to the site admin to set the rights, but the installer could check against the Db rights and issue warnings.

Perhaps security is enhanced a bit. If it's not too difficult to, it may be worth a try.

Masi