(轉)防止人為誤操作MySQL數據庫技巧一例
阿新 • • 發佈:2017-10-08
mysq ring 5.5 作者 trade ffi ont sql 領導 原創作品,允許轉載,轉載時請務必以超鏈接形式標明文章 原始出處 、作者信息和本聲明。否則將追究法律責任。http://oldboy.blog.51cto.com/2561410/1321061
防止人為誤操作MySQL數據庫技巧一例
(本題來自老男孩培訓內部學生問題,屬於數據庫安全技巧)
在若幹年前,老男孩親自遇到一個“命案”,老大登錄數據庫update一個記錄,結果忘了加where,於是悲劇發生了,這使得我對MySQL的增量恢復熟練度遠超過其他的知識點,同時也很在意對內的數據庫安全,並且每次講課講到此處,都會給學生講這個領導的故事。
1、mysql幫助說明
1 2 3 |
[oldboy_c64 ~]# mysql --help|grep dummy -U, --i-am-a-dummy Synonym for option --safe-updates, -U.
i-am-a-dummy FALSE
|
在mysql命令加上選項-U後,當發出沒有WHERE或LIMIT關鍵字的UPDATE或DELETE時,mysql程序就會拒絕執行
2、指定-U登錄測試
1 2 3 4 5 6 7 8 9 10 11 12 13 |
[oldboy_c64 ~]# mysql -uroot -poldboy123 -S /data/3306/mysql.sock -U
Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 14
Server version: 5.5.32- log MySQL Community Server (GPL)
Copyright (c) 2000, 2013, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type ‘help;‘ or ‘\h‘ for help. Type ‘\c‘ to clear the current input statement.
mysql> delete from oldboy.student;
ERROR 1175 (HY000): You are using safe update mode and you tried to update a table without a WHERE that uses a KEY column
mysql> quit
Bye
|
提示:不加條件無法刪除,目的達到。
3、做成別名防止老大和DBA誤操作
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
[oldboy_c64 ~] # alias mysql=‘mysql -U‘
[oldboy_c64 ~] # mysql -uroot -poldboy123 -S /data/3306/mysql.sock
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 15
Server version: 5.5.32-log MySQL Community Server (GPL)
Type ‘help;‘ or ‘\h‘ for help. Type ‘\c‘ to clear the current input statement.
mysql> delete from oldboy.student;
ERROR 1175 (HY000): You are using safe update mode and you tried to update a table without a WHERE that uses a KEY column
mysql> delete from oldboy.student where Sno=5;
Query OK, 1 row affected (0.02 sec)
mysql> quit
Bye
[oldboy_c64 ~] # echo "alias mysql=‘mysql -U‘" >>/etc/profile
[oldboy_c64 ~] # . /etc/profile
[oldboy_c64 ~] # tail -1 /etc/profile
alias mysql= ‘mysql -U‘
|
結論:
在mysql命令加上選項-U後,當發出沒有WHERE或LIMIT關鍵字的UPDATE或DELETE時,mysql程序拒絕執行
本文出自 “老男孩linux培訓” 博客,請務必保留此出處http://oldboy.blog.51cto.com/2561410/1321061
(轉)防止人為誤操作MySQL數據庫技巧一例