How to change the Secure Password of MySQL5.6

Source: Internet
Author: User
MySQL5.6 will automatically hide the password information in the log. Next, we will introduce in detail how MySQL5.6 can process the password more securely. If you are interested, please refer to me and hope to help you

MySQL 5.6 will automatically hide the password information in the log. Next, we will introduce in detail how MySQL 5.6 processes the password more securely. If you are interested, refer, hope to help you

MySQL 5.6 will automatically hide the password information in the log. This is not just obfuscation, and then stores the unidirectional hash value in the log file. You can disable Password Hiding for log files by setting log-raw = OFF. The log-raw setting only affects general logs, while the password is hidden in slow query logs and binary logs.

In MySQL 5.5, this requires manual processing when the hash is stored in the variable for the first time. However, this is useless in most scenarios.
However, according to the mysql Command manual, the mysql command does not record the statement that matches "* IDENTIFIED *: * PASSWORD.

However, do not forget to verify the permission protection for the MySQL server and client log files, including other files such as master.info. In addition, if you need to use the MySQL privileged system for protection when storing slave node creden in the database, if master.info enables someone to have too many database permissions, you can also use load data infile to LOAD the content.

Of course, there are still some improvements:
This is even better if we can easily enable secure connections. MySQL and many other applications use TLS, but there are some performance problems and it is not easy to set. In addition, MySQL is not secure by default and is simple.
Therefore, the security of MySQL 5.6 is improved without any configuration.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.