| |
| |
| |
| |
| |
| |
| |
| |
| |
|
|
| |
| |
| |
|
|
| import os, public, panelMysql |
|
|
| _title = '数据库备份权限检测' |
| _version = 1.0 |
| _ps = "检测MySQL root用户是否具备数据库备份权限" |
| _level = 3 |
| _date = '2020-09-19' |
| _ignore = os.path.exists("data/warning/ignore/sw_database_priv.pl") |
| _tips = [ |
| "登录Mysql执行【SHOW GRANTS FOR root;】查看root权限情况", |
| "【GRANT ALL PRIVILEGES ON *.* TO 'root'@'localhost' WITH GRANT OPTION;】授予root用户所有权限/或是根据需求授予部分权限", |
| "【FLUSH PRIVILEGES;】刷新MySQL用户权限,并再次查看root权限情况" |
| ] |
|
|
| _help = '' |
| _remind = '此方案保障了root用户备份数据库的权限,确保数据库备份工作的进行。' |
|
|
|
|
| def check_run(): |
| """检测root用户是否具备数据库备份权限 |
| |
| @author linxiao<2020-9-18> |
| @return (bool, msg) |
| """ |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| datadir = public.get_datadir() |
| if not datadir: |
| return True, '无风险' |
| pid_file = "{}/{}.pid".format(datadir, public.get_hostname()) |
| if os.path.exists(pid_file): |
| pid = int(public.readFile(pid_file)) |
| status = public.pid_exists(pid) |
| if not status: return True, '无风险' |
| else: |
| return True, '无风险' |
| base_backup_privs = ["Lock_tables_priv", "Select_priv"] |
| select_sql = "Select {} FROM mysql.user WHERE user='root' and " \ |
| "host=SUBSTRING_INDEX((select current_user()),'@', " \ |
| "-1);".format(",".join(base_backup_privs)) |
| select_result = panelMysql.panelMysql().query(select_sql) |
| if not select_result: |
| return False, "root用户执行mysqldump备份的权限不足。" |
| select_result = select_result[0] |
| for priv in select_result: |
| if priv.lower() != "y": |
| return False, "root用户执行mysqldump备份的权限不足。" |
| return True, '无风险' |
|
|
