[ Avaa Bypassed ]

Upload:

Command:

hmhc3928@18.216.61.96: ~ $ 
USE information_schema;
####################################################################################
1 Prepare test.
connection default (user=root)
####################################################################################
####################################################################################
1.1 Create two user
####################################################################################
DROP USER ddicttestuser1@'localhost';
DROP USER ddicttestuser2@'localhost';
CREATE USER ddicttestuser1@'localhost';
CREATE USER ddicttestuser2@'localhost';
SET PASSWORD FOR ddicttestuser1@'localhost' = PASSWORD('ddictpass');
SET PASSWORD FOR ddicttestuser2@'localhost' = PASSWORD('ddictpass');
####################################################################################
1.2 Establish connection con100 (user=ddicttestuser1 with no PROCESS privilege):
####################################################################################
####################################################################################
2 connection default(user=root with default privileges):
SHOW/SELECT shows all processes/threads.
####################################################################################
SHOW CREATE TABLE processlist;
Table	Create Table
PROCESSLIST	CREATE TEMPORARY TABLE `PROCESSLIST` (
  `ID` bigint(21) unsigned NOT NULL DEFAULT '0',
  `USER` varchar(16) NOT NULL DEFAULT '',
  `HOST` varchar(64) NOT NULL DEFAULT '',
  `DB` varchar(64) DEFAULT NULL,
  `COMMAND` varchar(16) NOT NULL DEFAULT '',
  `TIME` int(7) NOT NULL DEFAULT '0',
  `STATE` varchar(64) DEFAULT NULL,
  `INFO` longtext
) ENGINE=MyISAM DEFAULT CHARSET=utf8
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
SELECT * FROM processlist  ORDER BY id;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM processlist  ORDER BY id
SELECT ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO FROM processlist  ORDER BY id;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Query	TIME	executing	SELECT ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO FROM processlist  ORDER BY id
CREATE TEMPORARY TABLE test.t_processlist AS SELECT * FROM processlist;
UPDATE test.t_processlist SET user='horst' WHERE id=1  ;
INSERT INTO processlist SELECT * FROM test.t_processlist;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
DROP TABLE test.t_processlist;
CREATE VIEW test.v_processlist (ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO) AS SELECT * FROM processlist WITH CHECK OPTION;
ERROR HY000: CHECK OPTION on non-updatable view 'test.v_processlist'
CREATE VIEW test.v_processlist (ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO) AS SELECT * FROM processlist;
UPDATE test.v_processlist SET TIME=NOW() WHERE id = 1;
ERROR HY000: The target table v_processlist of the UPDATE is not updatable
DROP VIEW test.v_processlist;
UPDATE processlist SET user='any_user'  WHERE id=1 ;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
DELETE FROM processlist WHERE id=1 ;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
REVOKE ALL ON processlist FROM current_user;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
GRANT INSERT,UPDATE ON processlist TO current_user;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
SHOW GRANTS;
Grants for root@localhost
GRANT ALL PRIVILEGES ON *.* TO 'root'@'localhost' WITH GRANT OPTION
GRANT PROXY ON ''@'' TO 'root'@'localhost' WITH GRANT OPTION
CREATE INDEX i_processlist ON processlist (user);
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
DROP TABLE processlist;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
ALTER TABLE processlist DROP COLUMN user;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
ALTER TABLE processlist ADD COLUMN (my_column INT);
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
RENAME TABLE processlist TO new_processlist;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
RENAME TABLE processlist TO files;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
CREATE TABLE new_processlist AS SELECT * FROM processlist;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
DROP DATABASE information_schema;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
RENAME DATABASE information_schema TO info_schema;
ERROR 42000: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'DATABASE information_schema TO info_schema' at line 1
ALTER DATABASE information_schema UPGRADE DATA DIRECTORY NAME;
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
####################################################################################
3 Switch to connection con100 (user=ddicttestuser1 with no PROCESS privilege):
SHOW/SELECT shows only the processes (1) of the user.
####################################################################################
SHOW CREATE TABLE processlist;
Table	Create Table
PROCESSLIST	CREATE TEMPORARY TABLE `PROCESSLIST` (
  `ID` bigint(21) unsigned NOT NULL DEFAULT '0',
  `USER` varchar(16) NOT NULL DEFAULT '',
  `HOST` varchar(64) NOT NULL DEFAULT '',
  `DB` varchar(64) DEFAULT NULL,
  `COMMAND` varchar(16) NOT NULL DEFAULT '',
  `TIME` int(7) NOT NULL DEFAULT '0',
  `STATE` varchar(64) DEFAULT NULL,
  `INFO` longtext
) ENGINE=MyISAM DEFAULT CHARSET=utf8
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
SELECT * FROM processlist  ORDER BY id;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM processlist  ORDER BY id
SELECT ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO FROM processlist  ORDER BY id;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO FROM processlist  ORDER BY id
CREATE TEMPORARY TABLE test.t_processlist AS SELECT * FROM processlist;
UPDATE test.t_processlist SET user='horst' WHERE id=1  ;
INSERT INTO processlist SELECT * FROM test.t_processlist;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
DROP TABLE test.t_processlist;
CREATE VIEW test.v_processlist (ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO) AS SELECT * FROM processlist WITH CHECK OPTION;
ERROR HY000: CHECK OPTION on non-updatable view 'test.v_processlist'
CREATE VIEW test.v_processlist (ID, USER, HOST, DB, COMMAND, TIME, STATE, INFO) AS SELECT * FROM processlist;
UPDATE test.v_processlist SET TIME=NOW() WHERE id = 1;
ERROR HY000: The target table v_processlist of the UPDATE is not updatable
DROP VIEW test.v_processlist;
UPDATE processlist SET user='any_user'  WHERE id=1 ;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
DELETE FROM processlist WHERE id=1 ;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
REVOKE ALL ON processlist FROM current_user;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
GRANT INSERT,UPDATE ON processlist TO current_user;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
SHOW GRANTS;
Grants for ddicttestuser1@localhost
GRANT USAGE ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
CREATE INDEX i_processlist ON processlist (user);
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
DROP TABLE processlist;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
ALTER TABLE processlist DROP COLUMN user;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
ALTER TABLE processlist ADD COLUMN (my_column INT);
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
RENAME TABLE processlist TO new_processlist;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
RENAME TABLE processlist TO files;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
CREATE TABLE new_processlist AS SELECT * FROM processlist;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
DROP DATABASE information_schema;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
RENAME DATABASE information_schema TO info_schema;
ERROR 42000: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'DATABASE information_schema TO info_schema' at line 1
ALTER DATABASE information_schema UPGRADE DATA DIRECTORY NAME;
ERROR 42000: Access denied for user 'ddicttestuser1'@'localhost' to database 'information_schema'
####################################################################################
4 Grant PROCESS privilege to ddicttestuser1
connection default (user=root)
####################################################################################
GRANT PROCESS ON *.* TO ddicttestuser1@'localhost' IDENTIFIED BY 'ddictpass';
####################################################################################
4.1 Existing connection con100 (ddicttestuser1)
The user ddicttestuser1 has the PROCESS privilege, but the connection was
established before PROCESS was granted.
SHOW/SELECT shows only the processes (1) of the user.
####################################################################################
SHOW GRANTS;
Grants for ddicttestuser1@localhost
GRANT PROCESS ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
####################################################################################
4.2 New connection con101 (ddicttestuser1 with PROCESS privilege)
SHOW/SELECT shows all processes/threads.
####################################################################################
SHOW GRANTS;
Grants for ddicttestuser1@localhost
GRANT PROCESS ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
5 Grant PROCESS privilege to anonymous user.
connection default (user=root)
####################################################################################
GRANT PROCESS ON *.* TO ''@'localhost';
####################################################################################
5.1 Establish connection (anonymous1,localhost,'',,information_schema)
anonymous user with PROCESS privilege
SHOW/SELECT shows all processes/threads.
####################################################################################
SHOW GRANTS;
Grants for @localhost
GRANT PROCESS ON *.* TO ''@'localhost'
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID		HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID		HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	root	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
6 Revoke PROCESS privilege from ddicttestuser1
connection default (user=root)
####################################################################################
REVOKE PROCESS ON *.* FROM ddicttestuser1@'localhost';
####################################################################################
6.1 New connection con102 (ddicttestuser1 has no more PROCESS privilege)
Again (compared to state before GRANT PROCESS) only the processes of
ddicttestuser1 are visible.
####################################################################################
SHOW GRANTS;
Grants for ddicttestuser1@localhost
GRANT USAGE ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
7 Revoke PROCESS privilege from anonymous user
connection default (user=root)
####################################################################################
REVOKE PROCESS ON *.* FROM ''@'localhost';
####################################################################################
7.1 New connection (anonymous2,localhost,'',,information_schema)
The anonymous user has no more the PROCESS privilege
Again only the processes of the anonymous user are visible.
####################################################################################
SHOW GRANTS FOR ''@'localhost';
Grants for @localhost
GRANT USAGE ON *.* TO ''@'localhost'
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID		HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID		HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
8 Grant SUPER (does not imply PROCESS) privilege to ddicttestuser1
connection default (user=root)
####################################################################################
GRANT SUPER ON *.* TO 'ddicttestuser1'@'localhost';
####################################################################################
8.1 New connection con103 (ddicttestuser1 with SUPER privilege)
Only the processes of ddicttestuser1 user are visible.
####################################################################################
SHOW GRANTS FOR 'ddicttestuser1'@'localhost';
Grants for ddicttestuser1@localhost
GRANT SUPER ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD '*22DA61451703738F203CDB9DB041ACBA1F4760B1'
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
9 Revoke SUPER privilege from user ddicttestuser1
connection default (user=root)
####################################################################################
REVOKE SUPER ON *.* FROM 'ddicttestuser1'@'localhost';
####################################################################################
9.1 New connection con104 (ddicttestuser1 without SUPER privilege)
ddicttestuser1 has no more the SUPER privilege.
Only the processes of ddicttestuser1 are visible.
####################################################################################
SHOW GRANTS FOR 'ddicttestuser1'@'localhost';
Grants for ddicttestuser1@localhost
GRANT USAGE ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
10 Grant SUPER privilege with grant option to user ddicttestuser1.
connection default (user=root)
####################################################################################
GRANT SUPER ON *.* TO 'ddicttestuser1'@'localhost' WITH GRANT OPTION;
####################################################################################
10.1 New connection con105 (ddicttestuser1 with SUPER privilege and GRANT OPTION)
Try to grant PROCESS privilege to user ddicttestuser2 without having it.
####################################################################################
SHOW GRANTS FOR 'ddicttestuser1'@'localhost';
Grants for ddicttestuser1@localhost
GRANT SUPER ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD '*22DA61451703738F203CDB9DB041ACBA1F4760B1' WITH GRANT OPTION
GRANT PROCESS ON *.* TO 'ddicttestuser2'@'localhost';
ERROR 28000: Access denied for user 'ddicttestuser1'@'localhost' (using password: YES)
####################################################################################
10.2 Grant SUPER and PROCESS privilege with grant option to user ddicttestuser1
connection default (user=root)
####################################################################################
GRANT SUPER,PROCESS ON *.* TO 'ddicttestuser1'@'localhost' WITH GRANT OPTION;
####################################################################################
10.3 New connection con106 (ddicttestuser1 with SUPER,PROCESS WITH GRANT OPTION)
Grant PROCESS privilege to user ddicttestuser2
####################################################################################
SHOW GRANTS FOR 'ddicttestuser1'@'localhost';
Grants for ddicttestuser1@localhost
GRANT PROCESS, SUPER ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD '*22DA61451703738F203CDB9DB041ACBA1F4760B1' WITH GRANT OPTION
GRANT PROCESS ON *.* TO 'ddicttestuser2'@'localhost';
####################################################################################
10.4 New connection con200 (ddicttestuser2 with PROCESS privilege)
ddicttestuser2 has now the PROCESS privilege and sees all connections
####################################################################################
SHOW GRANTS FOR 'ddicttestuser2'@'localhost';
Grants for ddicttestuser2@localhost
GRANT PROCESS ON *.* TO 'ddicttestuser2'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID		HOST_NAME	information_schema	Sleep	TIME		NULL
ID		HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser2	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	root	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID		HOST_NAME	information_schema	Sleep	TIME		NULL
ID		HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser2	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	root	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
11 User ddicttestuser1 revokes PROCESS privilege from user ddicttestuser2
connection ddicttestuser1;
####################################################################################
REVOKE PROCESS ON *.* FROM 'ddicttestuser2'@'localhost';
####################################################################################
11.1 New connection con201 (ddicttestuser2)
ddicttestuser2 has no more the PROCESS privilege and can only see own connects
####################################################################################
SHOW GRANTS;
Grants for ddicttestuser2@localhost
GRANT USAGE ON *.* TO 'ddicttestuser2'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser2	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser2	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser2	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser2	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
11.2 Revoke SUPER,PROCESS,GRANT OPTION privilege from user ddicttestuser1
connection default (user=root)
####################################################################################
REVOKE SUPER,PROCESS,GRANT OPTION ON *.* FROM 'ddicttestuser1'@'localhost';
####################################################################################
11.3 New connection con107 (ddicttestuser1)
ddicttestuser1 has no more the PROCESS privilege and can only see own connects
He is also unable to GRANT the PROCESS privilege to ddicttestuser2
####################################################################################
SHOW GRANTS FOR 'ddicttestuser1'@'localhost';
Grants for ddicttestuser1@localhost
GRANT USAGE ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
GRANT PROCESS ON *.* TO 'ddicttestuser2'@'localhost';
ERROR 28000: Access denied for user 'ddicttestuser1'@'localhost' (using password: YES)
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
12 Revoke the SELECT privilege from user ddicttestuser1
connection default (user=root)
####################################################################################
REVOKE SELECT ON *.* FROM 'ddicttestuser1'@'localhost';
####################################################################################
12.1 New connection con108 (ddicttestuser1)
ddicttestuser1 has neither PROCESS nor SELECT privilege
Manual says: Each MySQL user has the right to access these tables, but can see
only the rows ...
Therefore the missing SELECT privilege does not affect SELECTs on PROCESSLIST.
####################################################################################
SHOW GRANTS FOR 'ddicttestuser1'@'localhost';
Grants for ddicttestuser1@localhost
GRANT USAGE ON *.* TO 'ddicttestuser1'@'localhost' IDENTIFIED BY PASSWORD <secret>
SHOW processlist;
Id	User	Host	db	Command	Time	State	Info
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	STATE	SHOW processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
SELECT * FROM information_schema.processlist;
ID	USER	HOST	DB	COMMAND	TIME	STATE	INFO
ID	ddicttestuser1	HOST_NAME	information_schema	Query	TIME	executing	SELECT * FROM information_schema.processlist
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
ID	ddicttestuser1	HOST_NAME	information_schema	Sleep	TIME		NULL
####################################################################################
12.2 Revoke only the SELECT privilege on the information_schema from ddicttestuser1.
connection default (user=root)
####################################################################################
REVOKE SELECT ON information_schema.* FROM 'ddicttestuser3'@'localhost';
ERROR 42000: Access denied for user 'root'@'localhost' to database 'information_schema'
####################################################################################
connection default (user=root)
Cleanup: close connections, DROP USER etc.
####################################################################################
DROP USER ddicttestuser1@'localhost';
DROP USER ddicttestuser2@'localhost';
REVOKE USAGE ON *.* FROM ''@'localhost';
DROP USER ''@'localhost';

Filemanager

DIR : / usr/ share/ mysql-test/ suite/ funcs_1/ r/
Name Type Size Permission Actions
charset_collation.result File 1.32 KB 0644
innodb_bitdata.result File 117 B 0644
innodb_cursors.result File 116 B 0644
innodb_func_view.result File 308.05 KB 0644
innodb_storedproc_02.result File 36.22 KB 0644
innodb_storedproc_03.result File 15.3 KB 0644
innodb_storedproc_06.result File 13.33 KB 0644
innodb_storedproc_07.result File 7.95 KB 0644
innodb_storedproc_08.result File 22.65 KB 0644
innodb_storedproc_10.result File 13.21 KB 0644
innodb_trig_0102.result File 15.05 KB 0644
innodb_trig_03.result File 25.26 KB 0644
innodb_trig_03e.result File 51.28 KB 0644
innodb_trig_0407.result File 15.4 KB 0644
innodb_trig_08.result File 18.27 KB 0644
innodb_trig_09.result File 9.97 KB 0644
innodb_trig_1011ext.result File 11.75 KB 0644
innodb_trig_frkey.result File 2.23 KB 0644
innodb_views.result File 581.19 KB 0644
is_basics_mixed.result File 30.21 KB 0644
is_character_sets.result File 3.96 KB 0644
is_cml_innodb.result File 4.71 KB 0644
is_cml_memory.result File 3.74 KB 0644
is_cml_myisam.result File 4.76 KB 0644
is_coll_char_set_appl.result File 4.34 KB 0644
is_collations.result File 4.43 KB 0644
is_column_privileges.result File 19.15 KB 0644
is_column_privileges_is_mysql_test.result File 1.44 KB 0644
is_columns.result File 20.23 KB 0644
is_columns_innodb.result File 77.84 KB 0644
is_columns_is.result File 76.59 KB 0644
is_columns_is_embedded.result File 74.61 KB 0644
is_columns_memory.result File 74.64 KB 0644
is_columns_myisam.result File 83.06 KB 0644
is_columns_myisam_embedded.result File 72.43 KB 0644
is_columns_mysql.result File 61.79 KB 0644
is_columns_mysql_embedded.result File 53.77 KB 0644
is_engines.result File 3.88 KB 0644
is_engines_archive.result File 161 B 0644
is_engines_blackhole.result File 205 B 0644
is_engines_csv.result File 149 B 0644
is_engines_federated.result File 173 B 0644
is_engines_innodb.result File 202 B 0644
is_engines_memory.result File 194 B 0644
is_engines_merge.result File 182 B 0644
is_engines_myisam.result File 162 B 0644
is_events.result File 6.37 KB 0644
is_key_column_usage.result File 19.64 KB 0644
is_key_column_usage_embedded.result File 16.94 KB 0644
is_routines.result File 26.6 KB 0644
is_routines_embedded.result File 23.94 KB 0644
is_schema_privileges.result File 15.45 KB 0644
is_schema_privileges_is_mysql_test.result File 1.84 KB 0644
is_schemata.result File 8.66 KB 0644
is_schemata_embedded.result File 8.75 KB 0644
is_schemata_is_mysql_test.result File 1.59 KB 0644
is_statistics.result File 19.97 KB 0644
is_statistics_is.result File 1.01 KB 0644
is_statistics_mysql.result File 5.73 KB 0644
is_statistics_mysql_embedded.result File 10.48 KB 0644
is_table_constraints.result File 15.44 KB 0644
is_table_constraints_is.result File 828 B 0644
is_table_constraints_mysql.result File 2.15 KB 0644
is_table_constraints_mysql_embedded.result File 3.53 KB 0644
is_table_privileges.result File 15.03 KB 0644
is_tables.result File 17.27 KB 0644
is_tables_embedded.result File 17.48 KB 0644
is_tables_innodb.result File 3.98 KB 0644
is_tables_is.result File 29.72 KB 0644
is_tables_memory.result File 4.02 KB 0644
is_tables_myisam.result File 4.03 KB 0644
is_tables_myisam_embedded.result File 4.42 KB 0644
is_tables_mysql.result File 14.39 KB 0644
is_tables_mysql_embedded.result File 27.65 KB 0644
is_triggers.result File 14.46 KB 0644
is_triggers_embedded.result File 11.97 KB 0644
is_user_privileges.result File 39.15 KB 0644
is_views.result File 11.21 KB 0644
is_views_embedded.result File 10.98 KB 0644
memory_bitdata.result File 168 B 0644
memory_cursors.result File 167 B 0644
memory_func_view.result File 308.1 KB 0644
memory_storedproc_02.result File 36.27 KB 0644
memory_storedproc_03.result File 15.35 KB 0644
memory_storedproc_06.result File 13.38 KB 0644
memory_storedproc_07.result File 8 KB 0644
memory_storedproc_08.result File 22.7 KB 0644
memory_storedproc_10.result File 13.26 KB 0644
memory_trig_0102.result File 15.1 KB 0644
memory_trig_03.result File 25.31 KB 0644
memory_trig_03e.result File 49.72 KB 0644
memory_trig_0407.result File 15.45 KB 0644
memory_trig_08.result File 18.32 KB 0644
memory_trig_09.result File 10.02 KB 0644
memory_trig_1011ext.result File 11.81 KB 0644
memory_views.result File 581.25 KB 0644
myisam_bitdata.result File 168 B 0644
myisam_cursors.result File 167 B 0644
myisam_func_view.result File 308.1 KB 0644
myisam_storedproc_02.result File 36.27 KB 0644
myisam_storedproc_03.result File 15.35 KB 0644
myisam_storedproc_06.result File 13.38 KB 0644
myisam_storedproc_07.result File 8 KB 0644
myisam_storedproc_08.result File 22.7 KB 0644
myisam_storedproc_10.result File 13.26 KB 0644
myisam_trig_0102.result File 15.1 KB 0644
myisam_trig_03.result File 25.31 KB 0644
myisam_trig_03e.result File 49.72 KB 0644
myisam_trig_0407.result File 15.45 KB 0644
myisam_trig_08.result File 18.32 KB 0644
myisam_trig_09.result File 10.02 KB 0644
myisam_trig_1011ext.result File 11.81 KB 0644
myisam_views-big.result File 596.24 KB 0644
processlist_priv_no_prot.result File 28.68 KB 0644
processlist_priv_ps.result File 28.71 KB 0644
processlist_val_no_prot.result File 91.97 KB 0644
processlist_val_ps.result File 91.98 KB 0644
row_count_func.result File 1.34 KB 0644
storedproc.result File 896.65 KB 0644