[TYPO3-dev] which privileges should be granted to databse user for running the Typo3 website.

Kay Strobach typo3 at kay-strobach.de
Thu Dec 15 08:56:57 CET 2011


Hi Shan,

it's based on how luxurious you want to live.

Basicly you need

Frontend:
 - select over all tables (except e.g. be_user)
 - update (if you have plugins using that functionality)
 - insert (if you have plugins using that functionality)

Backend:
 - all from frontend
 - alter  (or you have to do this manually)
 - create (or you have to do this manually)

So you see TYPO3 needs a lot of rights to offer you some of the luxurios
zeroconf operations. But you do need to check twice which rights can be
removed.

It's nearly sure, that you won't need any table structure modifications
in the fe ;)

Regards
Kay

On 15.12.2011 08:39, Shanmugarajan K wrote:
> Dear Team,
> 
> I just want to know, is there is any specific Privilege should give to the 
> database user access to run the Typo3 website. Currently Front end and 
> back end using the same DB user credential which is having all the 
> privilege. 
> For security concern, can we use the different database user which will 
> use only for rendering the Front end website? if so can you suggest which 
> are the DB operation to grand for that user?  For CMS access let it be the 
> user with full permission for db operation.
> 
> 
> Thanks & regards
> Shan
> 
> =====-----=====-----=====
> Notice: The information contained in this e-mail
> message and/or attachments to it may contain 
> confidential or privileged information. If you are 
> not the intended recipient, any dissemination, use, 
> review, distribution, printing or copying of the 
> information contained in this e-mail message 
> and/or attachments to it are strictly prohibited. If 
> you have received this communication in error, 
> please notify us by reply e-mail or telephone and 
> immediately and permanently delete the message 
> and any attachments. Thank you
> 
> 




More information about the TYPO3-dev mailing list