Comments - mysql_secure_installation

2 years, 4 months ago Tom Gossler

I agree with T.Niessink. I do not want any local user including root to connect to the DB without knowing the root user's db password. However while logged into unix as the root user (completing setup of a new server), having finishing the mysql_secure_installation process for MariaDB 10.5.15, and having entered No to the question regarding switching to unix socket authentication, I was able to access the MariaDB command prompt by simply typing mysql at the unix command prompt!! Did not have to enter -p, was not asked for a password, and was in MariaDB as a root user! I also tried "mysql -p" and hit enter at the password prompt and was able to connect as the root user in MariaDB. This seems like a very bad thing!

 
Content reproduced on this site is the property of its respective owners, and this content is not reviewed in advance by MariaDB. The views, information and opinions expressed by this content do not necessarily represent those of MariaDB or any other party.