Thread: Why running an RDBMS as a superuser is a Bad Thing

Why running an RDBMS as a superuser is a Bad Thing

From
Ian Barwick
Date:

Re: Why running an RDBMS as a superuser is a Bad Thing

From
"Magnus Hagander"
Date:
> MySQL AB explains:
> http://dev.mysql.com/tech-resources/articles/securing_mysql_wi
> ndows.html#part11

Indeed. I wonder when they'll change the default.

I also wonder why the service account needs Full Control on it's own
.EXE files. That seems highly dangerous. PostgreSQL adds explicit
deny-write permissions to itself on these files ;-) And only change on
the data files, no need for full control.

You will also notice they recommend you to use NT based systems (same as
pg), use NFTS (same as pg), no remote tcpip (same as pg)... Only pg does
it by default :-)

//Magnus