Description:
Upgrading Mysql form 3.23, 4,0 or 4.1.4 to MySQL-4.1.7 as the following effect: Already existing MySQL-users can see all databases with "show databases". New created users cannot. "revoke show databases on *.* from USER@'host'" has no consequences (not even after "flush privileges").

--safe-show-database is deprecated (and no longer does anything). How can I prevent users from seeing other databases they have no access rights for?

How to repeat:
Upgrade MySQL with existing  databases.

How can I prevent OLD users from seeing other databases they have no access rights for?

Check that you run mysql_fix_privilege_tables script to update privilege table.

It doesn't make a difference if you run mysql_fix_privileges. Already existing users can still see databases they have no access rights on.

Check that these users have no global level privileges like LOCK TABLES, CREATE TEMPORARY TABLES privileges.

A look in table “mysql.user” showed that new users had value “N” for “Lock_tables_priv” and “Create_tmp_table_priv”. Old users had value “Y” in those fields. I changed those privileges for an old user to “N” and flushed privileges. Result: No change. Then I restarted the mysql daemon and voila: The particular user couldn’t see the databases of other users anymore. Many thanks for your help.

Users with any of the CREATE TEMPORARY TABLES or LOCK TABLES global
privileges can see all databases on the server even though they don't have
the SHOW DATABASES privliege (experienced with MySQL Server v4.1.8).

These privileges are automatically given to existing users by the
mysql_fix_privilege_tables script after upgrade from previous versions of
MySQL Server (the database specific analogs of these privileges are not
set by this script).

No feedback was provided for this bug for over a month, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to "Open".