MySql security question

[ylesches]

I am in the process of installing an open source CRM.

I made the MySQL database using cPanel. It seems to me that anyone with the cPanel password could go to the MySQL section, create a new user name and give that user name full privileges to the DB. I can't have that happen (there are other people with access to cPanel for web related stuff and should not have access to the databases.)

Is there anyway to stop this?

[Infopro]

I am in the process of installing an open source CRM.

I made the MySQL database using cPanel. It seems to me that anyone with the cPanel password could go to the MySQL section, create a new user name and give that user name full privileges to the DB. I can't have that happen (there are other people with access to cPanel for web related stuff and should not have access to the databases.)

Is there anyway to stop this?

There is no way that I know of to allow a secondary user in cPanel with limited access.

[Spiral]

Yeah --- don't give them access to Cpanel.

You can create additional FTP accounts for uploading files without
granting access to Cpanel for the web site.

If they absolutely must have access to Cpanel then my suggestion would be to move all your databases over to a different hosting account on the same server and set the limits on your main site to allow no databases.

Thus Cpanel Login "A" has all your databases and a bogus web site

And Cpanel Login "B" doesn't allow databases and controls your website

That's the only way I can think of off hand to restrict things the way you want.