A long long time ago (in a galaxy far away… cue the music!) MySQL added support for an authentication plugin which is now known as mysql_native_password. The mysql_native_password plugin uses SHA1 hash to
One of the good traits of this plugin is that it allows authentication using …
[Read more]Dual-password capability makes it possible to seamlessly perform credential changes without downtime.
The post MySQL Security - Dual Password Support first appeared on dasini.net - Diary of a MySQL expert.
MySQL 8.0 has introduced an optional behavior that authorize users to change their password only if they could provide the current password.
The post MySQL Security - Password Verification-Required Policy first appeared on dasini.net - Diary of a MySQL expert.
MySQL provides password-expiration capability, which enables database administrators to require that users reset their password.
The post MySQL Security – Password Expiration Policy first appeared on dasini.net - Diary of a MySQL expert.
MySQL has the capability of generating random passwords for user accounts, as an alternative to requiring explicit administrator-specified literal passwords.
The post MySQL Security - Random Password Generation first appeared on dasini.net - Diary of a MySQL expert.
Dear Dave,
My DBA told me that an account I use to talk to
my MySQL database instance has TWO passwords! How does that
happen? Do I have to provide both passwords every
time?
Sincerely,
A Confused User Who Does Not Want to Type Two
Passwords All The Time
Dear Confused User,
Dual Password Support was added in MySQL
8.0.14 and it is a very handy thing. User accounts can now have a
primary password and a secondary password. Image a scenario where
you are rotating passwords as directed by your company policy but
it takes a while to change the credentials in all your code
despite your best EMACS magic. The ability to keep the servers up
and active as your do your security due diligence is very
helpful.
…
You don’t need this tutorial if you have access to the
root user or another one with SUPER and
GRANT privileges.
The following instructions works for MySQL 5.7. You will need to
stop the MySQL server and start it with mysqld_safe
with the option skip-grant-tables:
sudo service mysql stop sudo mysqld_safe --skip-grant-tables & mysql -u root mysql
If you get an error on start, chances are there is no folder
created for the mysqld_safe executable to run, on my
tests I was able to solve by doing:
sudo mkdir /var/run/mysqld sudo chown -R mysql:mysql /var/run/mysqld
And then trying to start the mysqld_safe process
again.
After this, the MySQL console will pop up, and you need to set up
a new password for root. The second line is
necessary due to a MySQL bug # …
One of Oracle's tenets is the focus on security. For this reason, when it took over the stewardship of MySQL, it started addressing the most common issues. It was not quick acting, but we have seen real progress:
Have you ever forgotten your WordPress administrator password and did not have access to your e-mail account or haven’t configured ...
The post How to Reset WordPress Admin Password via MySQL Command Prompt appeared first on RoseHosting.
What is the solution if I don’t want to give password in command line (i.e mysql -uroot -p ) OR don’t want to store password in files(in .my.cnf) and still can login into MySQL/MariaDB without password ? I was also bit curious to know but finally I found very easy solution called “unix_socket plugin” provided by MariaDB.
This plugin allows to use operating system user credentials while connecting to MariaDB via Unix socket. When we try to connect with OS user, it will retrieve uid of the process which has connected to the socket and allow it to connect to MariaDB with the same user.
You can simply install that plugin with command,
MariaDB [(none)]> INSTALL PLUGIN unix_socket SONAME 'auth_socket'; Query OK, 0 rows affected (0.02 sec)
After, then you need to identify the user which you want to use to login into MariaDB. Like for me,
…[Read more]