Building a Better CREATE USER Command
Prior to MySQL 5.7, the CREATE USER command had a number of limitations: No way to set both authentication plugin and password No way to disable a user No way to define user resource limitations No way...
View ArticleIdentifying Insecure Connections
A key theme of the MySQL Server 5.7 release is much improved security. Earlier releases of MySQL 5.7 have introduced features supporting this initiative including automatic generation and detection of...
View ArticleProtecting MySQL Passwords With the sha256_password Plugin
Over the years, MySQL has used three different mechanisms for securing passwords both for storage and for transmission across networks. This blog post aims to provide a brief history of the various...
View ArticleImproved ALTER USER Syntax Support in 5.7
Complimenting the expanded CREATE USER syntax introduced in MySQL Server 5.7.6 is more useful ALTER USER syntax. Before MySQL Server 5.7.6, ALTER USER could only be used to expire a user’s password....
View ArticleSSL/TLS Improvements in MySQL 5.7.10
Secure communications is a core component of a robust security policy, and MySQL Server 5.7.10 – the first maintenance release of MySQL Server 5.7 – introduces needed improvements in this area....
View ArticleSimplified SSL/TLS Setup for MySQL Community
Transport Layer Security (TLS, also often referred to as SSL) is an important component of a secure MySQL deployment, but the complexities of properly generating the necessary key material and...
View ArticleRestricting Connections to Secure Transport
MySQL 5.7 makes secure connections easier with streamlined key generation for both MySQL Community and MySQL Enterprise, improves security by expanding support for TLSv1.1 and TLSv1.2, and helps...
View ArticleFeedback Request: Enforcing SQL Mode
MySQL Server has an extensive collection of SQL modes which control a range of behavior ranging from compatibility modes for other RDBMS dialects (ANSI_QUOTES, PIPES_AS_CONCAT) to security...
View Article