The new release 8.0.13 for MySQL is available since last
week.
Concerning security, this comes with a new feature already
announced: the Password Verification Policy.
Let’s have a look…
This aim of this feature is to secure the attempts to change a
password by specifying the old one to be replaced.
It is turned off by default:
mysql> show variables like 'password_require_current'; +--------------------------+-------+ | Variable_name | Value | +--------------------------+-------+ | password_require_current | OFF | +--------------------------+-------+
and we can activate it by several ways (as for some other
password features):
1. Globally, at the server level:
mysql> set persist password_require_current='ON'; mysql> show variables like 'password_require_current'; +--------------------------+-------+ | Variable_name | Value | …[Read more]