I would like to ask if it's less secure to grant all privileges in MySQL to the user running the application, instead of having the password in the database.yml file?
hi,
Preferrable, give only required access to the user but with a password from MYSQL and use it with the password specified in the database.yml file. You can use the security feature for mentioning your username and password as mentioned by Robert
Regards, NAYAK
