Projects/mysqladm-rs
Projects
/
mysqladm-rs
12
2
Fork 0
Code Issues 36 Pull Requests Releases Activity

Prefer using newer authentication plugins than mysql_native_password #82

New Issue
Open
opened 2024-08-20 18:18:54 +02:00 by oysteikt · 0 comments
oysteikt commented 2024-08-20 18:18:54 +02:00
Owner
Copy Link

Ref https://dev.mysql.com/doc/refman/8.4/en/pluggable-authentication.html

The mysql_native_password authentication plugin is deprecated and subject to removal in a future version of MySQL.

Maybe we could enforce, or at least prefer the newer auth plugins if available? This is also relevant for #44, if we want to do our own unix uid based authentication for REPL access.

Ref https://dev.mysql.com/doc/refman/8.4/en/pluggable-authentication.html > The `mysql_native_password` authentication plugin is deprecated and subject to removal in a future version of MySQL. > * Plugins that perform authentication using SHA-256 password hashing. This is stronger encryption than that available with native authentication. See [Section 8.4.1.2, “Caching SHA-2 Pluggable Authentication”](https://dev.mysql.com/doc/refman/8.4/en/caching-sha2-pluggable-authentication.html), and [Section 8.4.1.3, “SHA-256 Pluggable Authentication”](https://dev.mysql.com/doc/refman/8.4/en/sha256-pluggable-authentication.html). Maybe we could enforce, or at least prefer the newer auth plugins if available? This is also relevant for #44, if we want to do our own unix uid based authentication for REPL access.
oysteikt added the
security
 label 2024-08-20 18:24:12 +02:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
dpkg-packaging
Labels
Clear labels
  
art

The issue needs someone to be creative

  
big

No, not bug, **big** - this is gonna take a while

  
blocked

This issue/PR depends on one or more other issues/PRs

  
bug

Something is not working, and it's not the shield hero

  
crash report

Report an oopsie

  
disputed

kranglefanter

  
documentation

Documentation changes required

  
duplicate

This issue or pull request already exists

  
feature request

New feature

  
good first issue

Get your hands dirty with a new project here

  
packaging

Relates to distribution of the software

  
question

More information is needed

  
security

Skommel

  
wontfix

This won't be fixed

No Label
art
big
blocked
bug
crash report
disputed
documentation
duplicate
feature request
good first issue
packaging
question
security
wontfix
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Projects/mysqladm-rs#82
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?