To verify that root has a password, do the following: 1) service mysql restart --skip-grant-tables 2) In MySQL, SELECT CONCAT('''',user,'''@''',host,'''') mysql_user,password from mysql.user where user='root'; This will show every host that root can login as along with the PASSWORD function-encrypted of the root password 3) service mysql restart
Make sure you have the user 'root'@'localhost'; With regard to --skip-networking, keep in mind that this blocks TCP/IP DB Connections This will not block socket-based connections i.e., this will block 'root'@'127.0.0.1', but not 'root'@'localhost' Rolando A. Edwards MySQL DBA (CMDBA) 155 Avenue of the Americas, Fifth Floor New York, NY 10013 212-625-5307 (Work) 201-660-3221 (Cell) AIM & Skype : RolandoLogicWorx redwa...@logicworks.net http://www.linkedin.com/in/rolandoedwards -----Original Message----- From: Grant [mailto:emailgr...@gmail.com] Sent: Monday, November 29, 2010 9:02 AM To: mysql@lists.mysql.com Subject: Verifying security I've got a couple security questions for you guys. Is there a way to verify I've set a password for mysql's root? I was previously running mysqld without --skip-networking until I noticed port: 3306 was referenced in mysqld.err. The strange thing is 'nmap localhost' never found an open 3306 port and I wasn't running a firewall on that system. Does this behavior make sense to anyone? - Grant -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/mysql?unsub=redwa...@logicworks.net -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/mysql?unsub=arch...@jab.org