I've been reading Kyank's excellent PHP/Mysql article and I'm a little confused when it comes to user privileges over the web.

I'm working on a content management system that will allow a couple people to update the site (via webforms - (no telnetting). Since the scripts runs on my host's servers the username will always be fixed and the host will always be "localhost".

Am I correct in assuming mysql privileges are not used in this situation?

My only guess is that I would have to create my own user/password system with PHP sessions/cookies and restrict access to the php scripts (instead of restricting access to explicit mysql commands)?

Thanks for the help guys.