<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Fri, Feb 13, 2015 at 12:05 PM, Murray Eisenberg <span dir="ltr"><<a href="mailto:murrayeisenberg@gmail.com" target="_blank">murrayeisenberg@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">Isn't there some safer way to be able to use mysql with a datadir in a non-default location (after specifying it in my.cnf, of course)?</blockquote></div><br>You can use ACLs to only grant that permission to the _mysql user (see ACL MANIPULATION OPTIONS in `man chmod`, or use Get Info in the Finder and see the "Sharing and Permissions" section at the bottom of the info pane). But in general granting directory search permission is common and not considered to be a significant security issue. In particular, by default everything up to /Volumes/MacHD/Users/$USER will generally have a+x.<br clear="all"><div><br></div><div><div><font face="monospace, monospace">pyanfar:4326 Z$ sh -c 'oIFS="$IFS"; IFS=/; set -- $(pwd); p=; for d; do IFS="$oIFS"; p="$p/$d"; ls -ld "$p"; done'</font></div><div><font face="monospace, monospace">drwxr-xr-x 34 root admin 1224 Feb 12 07:17 /</font></div><div><font face="monospace, monospace">drwxr-xr-x 6 root admin 204 Aug 29 11:43 //Users</font></div><div><font face="monospace, monospace">drwxr-xr-x+ 61 allbery staff 2074 Feb 13 12:06 //Users/allbery</font></div><div><font face="monospace, monospace">drwx------@ 57 allbery staff 1938 Feb 13 11:19 //Users/allbery/Library</font></div><div><font face="monospace, monospace">drwx------+ 187 allbery staff 6358 Feb 13 12:12 //Users/allbery/Library/Preferences</font></div></div><div><br></div>-- <br><div class="gmail_signature"><div dir="ltr"><div>brandon s allbery kf8nh sine nomine associates</div><div><a href="mailto:allbery.b@gmail.com" target="_blank">allbery.b@gmail.com</a> <a href="mailto:ballbery@sinenomine.net" target="_blank">ballbery@sinenomine.net</a></div><div>unix, openafs, kerberos, infrastructure, xmonad <a href="http://sinenomine.net" target="_blank">http://sinenomine.net</a></div></div></div>
</div></div>