There are many changes to the password in MySQL 5.6, including:
However, there is no article about this.
This article describes how to automatically hide passwords in your log files in MySQL 5.6.
MySQL 5.6 will automatically hide the password information in the log. This is not just obfuscation, and then stores the unidirectional hash value in the log file. You can disable password hiding for log files by setting log-raw = OFF. The log-raw setting only affects general logs, while the password is hidden in slow query logs and binary logs.
In MySQL 5.5, this requires manual processing when the hash is stored in the variable for the first time. However, this is useless in most scenarios.
However, according to the mysql command manual, the mysql command does not record the statement that matches "* IDENTIFIED *: * PASSWORD.
However, do not forget to verify the permission protection for the MySQL server and client log files, including other files such as master.info. In addition, if you need to use the MySQL privileged system for protection when storing Slave node creden in the database, if master.info enables someone to have too many Database permissions, you can also use load data infile to LOAD the content.
Of course, there are still some improvements:
This is even better if we can easily enable secure connections. MySQL and many other applications use TLS, but there are some performance problems and it is not easy to set. In addition, MySQL is not secure by default and is simple.
Therefore, the security of MySQL 5.6 is improved without any configuration.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
