Several methods to crack the root password of a MySQL database _ MySQL

Source: Internet
Author: User
Several methods to crack the root password of a MySQL database:

Method 1

Use phpmyadmin, which is the simplest. modify the user table of the mysql database, but do not forget to use the PASSWORD function.

Method 2

Use mysqladmin, which is a special case stated above.

Mysqladmin-u root-p password mypasswd

After entering this command, you need to enter the original root password, and then the root password will be changed to mypasswd.

Change the root in the command to your username, and you can change your password.

Of course, if your mysqladmin cannot connect to mysql server, or you cannot execute mysqladmin, this method is invalid, and mysqladmin cannot clear the password.

The following methods are used at the mysql prompt and must have the root permission of mysql:

Method 3

Mysql> Insert INTO mysql. user (Host, User, Password)

VALUES ('%', 'Jeffrey ', PASSWORD ('biscuit '));


Specifically, this is adding a user with the username jeffrey and password biscuit.

This example is provided in mysql Chinese Reference Manual:

Be sure to use the PASSWORD function, and then use flush privileges.

Method 4

Similar to method Sany, but the REPLACE statement is used.

Mysql> replace into mysql. user (Host, User, Password)

VALUES ('%', 'Jeffrey ', PASSWORD ('biscuit '));


Method 5

Use the set password statement,

Mysql> set password for jeffrey @ "%" = PASSWORD ('biscuit ');

You must use the PASSWORD () function, but do not need to use flush privileges.

Method 6

Use the GRANT... identified by statement

Mysql> grant usage on *. * TO jeffrey @ "%" identified by 'biscuit ';

Here, the PASSWORD () function is unnecessary and does not need to be flush privileges.

Note: PASSWORD () [not] implements PASSWORD encryption in the same way as Unix PASSWORD encryption.

How to fix MySQL password loss

If MySQL is running, killall-TERM mysqld is first killed.

Start MySQL: bin/safe_mysqld -- skip-grant-tables &

You can access MySQL without a password.


> Use mysql

> Update user set password = password ("new_pass") where user = "root ";

> Flush privileges;

Kill MySQL again and start MySQL in a normal way.

Clear mysql password


1. log on to the system as a system administrator.

2. stop MySQL services.

3. go to the command window and enter the MySQL installation directory. for example, if my installation directory is c:/mysql, go to C:/mysql/bin.

4. skip the permission check and start MySQL,

C:/mysql/bin> mysqld-nt -- skip-grant-tables

5. open a new window, enter the c:/mysql/bin directory, and set the new root password.

C:/mysql/bin> mysqladmin-u root flush-privileges password "newpassword"

C:/mysql/bin> mysqladmin-u root-p shutdown

Replace newpassword with the root password you want to use. the second command will prompt you to enter a new password and repeat the password entered by the first command.

6. stop MySQL Server and start Mysql in normal mode

7. You can use a new password to link to Mysql.

Unix & Linux:

1. log on to the system using root or a user running mysqld;

2. use the kill command to end the mysqld process;

3. use the -- skip-grant-tables parameter to start MySQL Server

Shell> mysqld_safe -- skip-grant-tables &

4. set a new password for root @ localhost

Shell> mysqladmin-u root flush-privileges password "newpassword"

5. restart MySQL Server

Mysql password change

To modify mysql, run the following command on the mysql command line:

Mysql-u root mysql

Mysql> Update user SET password = PASSWORD ("new password") Where user = 'name ';

Mysql> flush privileges;

Mysql> QUIT

How to restore the password of a MySQL database

Because the MySQL password is stored in the user table in the mysql database, you only need to copy the user table in MySQL under windows 2003 to overwrite it.

In c:/mysql/data/mysql/(linux, there are three user table related files in the/var/lib/mysql/) directory. frm, user. MYD, user. MYI

User. frm // user table style file

User. MYD // user table data file

User. MYI // user table index file

For the sake of insurance, all three are copied. However, if the table structure has not been changed on the MySQL to be restored, just copy user. MYD.


#./Etc/rc. d/init. d/mysql stop

#./Etc/rc. d/init. d/mysql start

# Mysql-u root-p XXXXXX

Okay, you can log in with the mysql password in windows 2003.

Mysql> use mysql

Mysql> update user set Password = PASSWORD ('xxxxxx') where User = 'root ';

An error occurs, prompting that the user table has only the read permission.

I analyzed the reason. this is the only reason, because the permissions assigned to the user. * file are in windows 2003, and in windows 2003, my ls-l permission is 666.

In linux, I can see that after copying the file, the permission is changed to 600 (in fact, under normal circumstances, only the file owner here is not mysql, the copied owner is changed to root, so there will be insufficient permissions. at this time, if you change to 666 permissions, it will be okay, of course, this is not good, there is no substance to solve the problem ), check the ls-l in/var/lib/mysql /.

# Chown-R mysql: mysql user .*

# Chmod 600 user .*


Restart MYSQL


Mysql> use mysql

Mysql> update user set Password = PASSWORD ('xxxxxx') where User = 'root ';

Mysql> flush privileges;

Note: If mysql is configured by default in windows, you must execute

Mysql> delete from user where User = '';

Mysql> delete from user where Host = '% ';

Mysql> flush privileges;

Now, the password recovery process is complete.

This method has some limitations. you must have another user table file.

There are several other methods

Other methods 1 (this is a widely spread method on the Internet, mysql Chinese Reference Manual)

1. send the kill command to the mysqld server to disable the mysqld server (not kill-9). the files that store the process ID are usually located in the directory of the MYSQL database.

Killall-TERM mysqld

You must be a UNIX root user or an equivalent user on the SERVER you run to perform this operation.

2. use the '-- skip-grant-tables' parameter to start mysqld. In LINUX:

/Usr/bin/safe_mysqld -- skip-grant-tables, c:/mysql/bin/mysqld -- skip-grant-tables in windows

3. log on to the mysqld server without a password,

> Use mysql

> Update user set password = password ("new_pass") where user = "root ";

> Flush privileges;

You can also do this:

Mysqladmin-h hostname-u user password 'new password''

4. load the permission table:

Mysqladmin-h hostname flush-privileges'

Or use SQL commands


5. killall-TERM mysqld

6. log in with a new password

Other Method 2

Directly use the hexadecimal editor to edit the user. MYD file

But here I want to explain that I found a problem when editing here. some encrypted password strings are stored continuously, and some of the last two digits are cut, the last two digits are stored in other places. I haven't understood this yet. note that the encrypted password string is edited, that is, you still need to have another user table file. The difference between this method and the method described above is that this method directly edits the user table file in linux, and you do not need to change the file owner and permissions.

Correct: the actual operations on Windows are as follows:

1. disable running MySQL.

2. open the DOS window and go to the mysql/bin directory.

3. input

Mysqld-nt -- skip-grant-tables

Press Enter. If no prompt is displayed, it is correct.

4. open another DOS window (because the DOS window can no longer be moved) and go to the mysql/bin directory.

5. enter mysql and press Enter. If yes, a MySQL prompt is displayed.>

6. connect to the permission database

> Use mysql;

(> It is an existing prompt. Don't forget the last semicolon)

6. change the password:

> Update user set password = password ("123456") where user = "root"; (do not forget the last semicolon)

7. refresh permissions (required steps)

> Flush privileges;

8. exit


9. log out of the system, log on to MySQL, and log on to MySQL with the username "root" and the new password "123456.

It is said that you can directly modify the user table file:

Close MySQL and open Mysql/data/mysql in Windows. There are three files named user. frm, user. MYD, user. MYI finds a MySQL with a password and replaces these three files. if the user table structure has not been changed, no one will change it. replace the user. MYD.

You can also directly edit user. MYD and find a hexadecimal editor. UltraEdit has this function. Close MySQL and enable user. MYD. Change the eight characters after the root user name to 565491d704013245, and the new password is 123456. Or change the hexadecimal numbers corresponding to them (one character on the left corresponds to two numbers) to 00 02 02 02 02 02 02 02 02 02. this is an empty password, the asterisk * is displayed on the right of the editor, which looks like a decimal point. Restart MySQL and enter root and your new password.

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.