Report processor worker refactored to run under another user (nobody) and have its own mysql credentials.

2017-04-27 16:35:53 -04:00 · 2017-04-27 16:35:53 -04:00 · 2ac89f3365
commit 2ac89f3365
parent c3edf42ada
13 changed files with 159 additions and 204 deletions
--- a/setup/install-centos7.sh
+++ b/setup/install-centos7.sh
@ -36,6 +36,8 @@ SMTP_PASS=`pwgen 12 -1`
 # Setup MySQL user for Mailtrain
 mysql -u root -e "CREATE USER 'mailtrain'@'localhost' IDENTIFIED BY '$MYSQL_PASSWORD';"
 mysql -u root -e "GRANT ALL PRIVILEGES ON mailtrain.* TO 'mailtrain'@'localhost';"
+mysql -u root -e "CREATE USER 'mailtrain_ro'@'localhost' IDENTIFIED BY '$MYSQL_PASSWORD';"
+mysql -u root -e "GRANT SELECT ON mailtrain.* TO 'mailtrain_ro'@'localhost';"
 mysql -u mailtrain --password="$MYSQL_PASSWORD" -e "CREATE database mailtrain;"

 # Enable firewall, allow connections to SSH, HTTP, HTTPS and SMTP