Re: password problem
Data directory path mention in cnf is of old mysql. Make a fresh data directory, configure it in configuration file and execute mysqlinstall_db, I don't understand the sentence about the data directory path mention. The my.cnf file is at /etc/my.cnf . It doesn't have any data directory path mention, but neither does the my.cnf file on a laptop, which works. So there seems to be nothing wrong with the location or content of the my.cnf file. On Fri, Jul 31, 2015 at 5:11 AM, Martin Mueller martinmuel...@northwestern.edumailto:martinmuel...@northwestern.edu wrote: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same. Martin Mueller Professor emeritus of English and Classics Northwestern University -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql -- Thanks and Regards: Nikhil Anand +91 9650024197
Re: password problem
Am 31.07.2015 um 14:40 schrieb Martin Mueller: Sorry for the off-list reply. It was an oversight. That said, the instructions for resetting a forgotten root password have a section for Windows and a section for Unix. The Unix section begins as follows: 1. Log on to your system as the Unix user that the MySQL server runs as (for example, mysql). But if I do this with the command 'mysql -u mysql I get the answer Access denied for user 'mysql'@'localhost' (using password: NO) I can do this as super user or normal, and I can try passwords from earlier installations, but none of them work. So I am stopped dead in my tracks, am I not? what do you not understand in: Resetting the Root Password: Generic Instructions Stop the MySQL server if necessary, then restart it with the --skip-grant-tables option jesus christ, put skip-grant-tables in your my.cnf, make sure the server is not reachable from outside and just type myysql -u root and don't forget remove skip-grant-tables after you defined a password you are knowing and restarting the server again As for the datadir, the command update db locate mysql works on the Mac and gives me info about a whole set of files in /usr/local/mysql-5.1.73-osx10.6-x86_64. That's where I thought it was, and I deleted a previous installation because I had moved the data I needed to another machine. I'm not a very experienced programmer and have trouble wrestling with the command line. But I think I did my due diligence and didn't find any open doors. well, you have a bad mix * missing knowledge * a blackbox with a installer * refusing to read more than the begin of docs On 7/31/15 3:36 AM, Reindl Harald h.rei...@thelounge.net wrote: first: don't reply off-list, a answer on a mailing-list is no invitation for private support! Am 31.07.2015 um 02:34 schrieb Martin Mueller: I read that section but was stopped in my tracks by Log on to your system as the Unix user that the MySQL server runs as (for example, mysql) Because I have no password for ANY thing. read the f**ng https://dev.mysql.com/doc/refman5.0/en/resetting-permissions.html https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html - unbelievebale that users these days need anything ready chewed and are too lazy to click on a link and read more than 5 lines Resetting the Root Password: Generic Instructions Stop the MySQL server if necessary, then restart it with the --skip-grant-tables option I used the uninstall routine recommended by Rob Allen, in which you remove the directories /usr/local/mysql as well as /usr/local/mysql* and a lot of other library and etc files. So there is no trace of the old system on my machine. How come a routine installation of mysql then locks up the application. the datadir is *not* removed by any sane installer, dunno where it lives on Apple machines since i banned them 5 years ago for good reasons on a non-OSX i would just type updatedb; locate mysql als root On 7/30/15, 19:22, Reindl Harald h.rei...@thelounge.net wrote: Am 31.07.2015 um 01:41 schrieb Martin Mueller: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same * install and uninstall *never* removes the datadir * users and permissions are in the DB mysql * https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html signature.asc Description: OpenPGP digital signature
Re: password problem
Am 31.07.2015 um 16:23 schrieb Martin Mueller: Dear Mr Harald, I've learned some things from your responses and even more from shawn green's. You might learn a lot from him about patience and courtesy, which make life on a technical forum a lot easier. You clearly know a lot about technical stuff, but you're short on patience, and it would help you a lot to practice a little courtesy and refrain from vulgar language. well, i am developer and sysadmin, not a politican my first response pointed again to the docs and quotet that: Resetting the Root Password: Generic Instructions Stop the MySQL server if necessary, then restart it with the --skip-grant-tables option https://www.google.at/search?q=skip-grant-tables would have flooded you with informations P.S.: on the right side of the docs page is a Section Navigation with a link https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html#resetting-permissions-generic On 7/31/15 9:12 AM, Reindl Harald h.rei...@thelounge.net wrote: Am 31.07.2015 um 15:40 schrieb shawn l.green: 1. Log on to your system as the Unix user that the MySQL server runs as (for example, mysql). Everything that executes on a Linux/Unix/Mac machine executes in the context of some kind of user account (the system login). By default, mysqld (the database server daemon) is installed to run under the host machine user account 'mysql'. It can be changed if you want to change it but that is the default. That is why 'mysql' was listed in the for example section of that instruction but this part of the docs is completly bullshit a) on no sane system the user mysql has a password, hence no login possible and typically it has also no shell configured b) for what reason mysql -u root and you are done with skip-grant-tables (and skip-grant-tables is the only relevant point) why in the world should i need to logon as the user mysqld runs for connect to mysqld? but anyways, mysql -u mysql would have worked also as well as mysql -u bullshit because skip-grant-tables does what it says, you can do anything you like to do signature.asc Description: OpenPGP digital signature
Re: password problem
Am 31.07.2015 um 14:45 schrieb Martin Mueller: Data directory path mention in cnf is of old mysql. Make a fresh data directory, configure it in configuration file and execute mysqlinstall_db, I don't understand the sentence about the data directory path mention. The my.cnf file is at /etc/my.cnf . It doesn't have any data directory path mention, but neither does the my.cnf file on a laptop, which works. So there seems to be nothing wrong with the location or content of the my.cnf file. your current problem is that you have no clue where your mysql-datadir is *because* it's some random default, from the moment on you specify it a) you know it - good for a million reasons b) it is empty and you can start from scratch or you seek the current one and make the folder empty and start with mysql_install_db initializes the MySQL data directory and creates the system tables that it contains, if they do not exist. On Fri, Jul 31, 2015 at 5:11 AM, Martin Mueller martinmuel...@northwestern.edumailto:martinmuel...@northwestern.edu wrote: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same. Martin Mueller Professor emeritus of English and Classics Northwestern University -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql -- Thanks and Regards: Nikhil Anand +91 9650024197 -- Reindl Harald the lounge interactive design GmbH A-1060 Vienna, Hofmühlgasse 17 CTO / CISO / Software-Development m: +43 (676) 40 221 40, p: +43 (1) 595 3999 33 icq: 154546673, http://www.thelounge.net/ http://www.thelounge.net/signature.asc.what.htm signature.asc Description: OpenPGP digital signature
Re: password problem
Am 31.07.2015 um 15:40 schrieb shawn l.green: 1. Log on to your system as the Unix user that the MySQL server runs as (for example, mysql). Everything that executes on a Linux/Unix/Mac machine executes in the context of some kind of user account (the system login). By default, mysqld (the database server daemon) is installed to run under the host machine user account 'mysql'. It can be changed if you want to change it but that is the default. That is why 'mysql' was listed in the for example section of that instruction but this part of the docs is completly bullshit a) on no sane system the user mysql has a password, hence no login possible and typically it has also no shell configured b) for what reason mysql -u root and you are done with skip-grant-tables (and skip-grant-tables is the only relevant point) why in the world should i need to logon as the user mysqld runs for connect to mysqld? but anyways, mysql -u mysql would have worked also as well as mysql -u bullshit because skip-grant-tables does what it says, you can do anything you like to do signature.asc Description: OpenPGP digital signature
Re: password problem
Sorry for the off-list reply. It was an oversight. That said, the instructions for resetting a forgotten root password have a section for Windows and a section for Unix. The Unix section begins as follows: 1. Log on to your system as the Unix user that the MySQL server runs as (for example, mysql). But if I do this with the command 'mysql -u mysql I get the answer Access denied for user 'mysql'@'localhost' (using password: NO) I can do this as super user or normal, and I can try passwords from earlier installations, but none of them work. So I am stopped dead in my tracks, am I not? As for the datadir, the command update db locate mysql works on the Mac and gives me info about a whole set of files in /usr/local/mysql-5.1.73-osx10.6-x86_64. That's where I thought it was, and I deleted a previous installation because I had moved the data I needed to another machine. I'm not a very experienced programmer and have trouble wrestling with the command line. But I think I did my due diligence and didn't find any open doors. Martin Mueller Professor emeritus of English and Classics Northwestern University On 7/31/15 3:36 AM, Reindl Harald h.rei...@thelounge.net wrote: first: don't reply off-list, a answer on a mailing-list is no invitation for private support! Am 31.07.2015 um 02:34 schrieb Martin Mueller: I read that section but was stopped in my tracks by Log on to your system as the Unix user that the MySQL server runs as (for example, mysql) Because I have no password for ANY thing. read the f**ng https://dev.mysql.com/doc/refman5.0/en/resetting-permissions.html https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html - unbelievebale that users these days need anything ready chewed and are too lazy to click on a link and read more than 5 lines Resetting the Root Password: Generic Instructions Stop the MySQL server if necessary, then restart it with the --skip-grant-tables option I used the uninstall routine recommended by Rob Allen, in which you remove the directories /usr/local/mysql as well as /usr/local/mysql* and a lot of other library and etc files. So there is no trace of the old system on my machine. How come a routine installation of mysql then locks up the application. the datadir is *not* removed by any sane installer, dunno where it lives on Apple machines since i banned them 5 years ago for good reasons on a non-OSX i would just type updatedb; locate mysql als root On 7/30/15, 19:22, Reindl Harald h.rei...@thelounge.net wrote: Am 31.07.2015 um 01:41 schrieb Martin Mueller: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same * install and uninstall *never* removes the datadir * users and permissions are in the DB mysql * https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: password problem
Dear Mr Harald, I've learned some things from your responses and even more from shawn green's. You might learn a lot from him about patience and courtesy, which make life on a technical forum a lot easier. You clearly know a lot about technical stuff, but you're short on patience, and it would help you a lot to practice a little courtesy and refrain from vulgar language. Martin Mueller Professor emeritus of English and Classics Northwestern University On 7/31/15 9:12 AM, Reindl Harald h.rei...@thelounge.net wrote: Am 31.07.2015 um 15:40 schrieb shawn l.green: 1. Log on to your system as the Unix user that the MySQL server runs as (for example, mysql). Everything that executes on a Linux/Unix/Mac machine executes in the context of some kind of user account (the system login). By default, mysqld (the database server daemon) is installed to run under the host machine user account 'mysql'. It can be changed if you want to change it but that is the default. That is why 'mysql' was listed in the for example section of that instruction but this part of the docs is completly bullshit a) on no sane system the user mysql has a password, hence no login possible and typically it has also no shell configured b) for what reason mysql -u root and you are done with skip-grant-tables (and skip-grant-tables is the only relevant point) why in the world should i need to logon as the user mysqld runs for connect to mysqld? but anyways, mysql -u mysql would have worked also as well as mysql -u bullshit because skip-grant-tables does what it says, you can do anything you like to do -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: password problem
On 7/31/2015 8:40 AM, Martin Mueller wrote: Sorry for the off-list reply. It was an oversight. That said, the instructions for resetting a forgotten root password have a section for Windows and a section for Unix. The Unix section begins as follows: 1. Log on to your system as the Unix user that the MySQL server runs as (for example, mysql). Everything that executes on a Linux/Unix/Mac machine executes in the context of some kind of user account (the system login). By default, mysqld (the database server daemon) is installed to run under the host machine user account 'mysql'. It can be changed if you want to change it but that is the default. That is why 'mysql' was listed in the for example section of that instruction. But if I do this with the command 'mysql -u mysql I get the answer No. That is how you log into mysqld to open a MySQL client session. The instruction was to login to your operating system as the user that mysqld operates as. These are fundamentally different accounts at two very different levels. Access denied for user 'mysql'@'localhost' (using password: NO) I can do this as super user or normal, and I can try passwords from earlier installations, but none of them work. So I am stopped dead in my tracks, am I not? That is because you didn't add this line to the [mysqld] section of your configuration file before you started mysqld. skip-grant-tables If you had, you would not have needed to use any passwords at all. This command (on the system prompt) would be all you need to connect to your now completely-unlocked database server (see the third section of generic instructions that work on any platform). mysql As for the datadir, the command update db locate mysql works on the Mac and gives me info about a whole set of files in /usr/local/mysql-5.1.73-osx10.6-x86_64. That's where I thought it was, and I deleted a previous installation because I had moved the data I needed to another machine. I'm not a very experienced programmer and have trouble wrestling with the command line. But I think I did my due diligence and didn't find any open doors. The door is there, you just just need to be able to see it as a door. Just a little more experience working on the command line will help. ... remainder snipped ... -- Shawn Green MySQL Senior Principal Technical Support Engineer Oracle USA, Inc. - Integrated Cloud Applications Platform Services Office: Blountville, TN Become certified in MySQL! Visit https://www.mysql.com/certification/ for details. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql
Re: password problem
first: don't reply off-list, a answer on a mailing-list is no invitation for private support! Am 31.07.2015 um 02:34 schrieb Martin Mueller: I read that section but was stopped in my tracks by Log on to your system as the Unix user that the MySQL server runs as (for example, mysql) Because I have no password for ANY thing. read the f**ng https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html - unbelievebale that users these days need anything ready chewed and are too lazy to click on a link and read more than 5 lines Resetting the Root Password: Generic Instructions Stop the MySQL server if necessary, then restart it with the --skip-grant-tables option I used the uninstall routine recommended by Rob Allen, in which you remove the directories /usr/local/mysql as well as /usr/local/mysql* and a lot of other library and etc files. So there is no trace of the old system on my machine. How come a routine installation of mysql then locks up the application. the datadir is *not* removed by any sane installer, dunno where it lives on Apple machines since i banned them 5 years ago for good reasons on a non-OSX i would just type updatedb; locate mysql als root On 7/30/15, 19:22, Reindl Harald h.rei...@thelounge.net wrote: Am 31.07.2015 um 01:41 schrieb Martin Mueller: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same * install and uninstall *never* removes the datadir * users and permissions are in the DB mysql * https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html signature.asc Description: OpenPGP digital signature
Re: password problem
Data directory path mention in cnf is of old mysql. Make a fresh data directory, configure it in configuration file and execute mysqlinstall_db, On Fri, Jul 31, 2015 at 5:11 AM, Martin Mueller martinmuel...@northwestern.edu wrote: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same. Martin Mueller Professor emeritus of English and Classics Northwestern University -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql -- *Thanks and Regards:* *Nikhil Anand* *+91 9650024197*
Re: password problem
Am 31.07.2015 um 01:41 schrieb Martin Mueller: I have installed mysql 5.1.73 on an old Mac Pro running OS Lion. I cannot run the mysql command because it challenges me for a password. But I did not set any password, either for the root, for mysql, or for myself as a user. So the installation has somehow installed passwords about which I know nothing or there is some error in the installation process. There is a lot on the Web about resetting a forgotten password. But the assumption is always that you can get at the program via some other password. But in this case every door is shut. Does anybody recognize this problem? I've uninstalled and re-installed the program, but the results are always the same * install and uninstall *never* removes the datadir * users and permissions are in the DB mysql * https://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html signature.asc Description: OpenPGP digital signature
Re: Password Reset
Change password statements should show up in the binary logs, too, in some form or other. On Thu, Dec 16, 2010 at 9:58 PM, Alejandro Bednarik alejand...@olx.comwrote: SQL injection? Check Apache or whatever log files. On Thu, Dec 16, 2010 at 4:17 PM, Gary gp...@paulgdesigns.com wrote: I recieved a call from a client saying the web site did not work, turns out the database password was reset, and not by me. In looking in the DB after the PW was reset, I could find nothing out of place, although frankly I was not sure what to look for. Is this indicitive of an attack? Is this something to worry about? I had (or so I assumed) plenty of protections on the files, including one of the more popular anit-spam/injection attack systems. Any guidance on this would be appriciated. -- Gary __ Information from ESET Smart Security, version of virus signature database 5708 (20101216) __ The message was checked by ESET Smart Security. http://www.eset.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=alejand...@olx.com -- Infrastructure Team OLX Inc. Buenos Aires - Argentina Phone : 54.11.4775.6696 Mobile : 54.911.50436059 Email: alejand...@olx.com -- Bier met grenadyn Is als mosterd by den wyn Sy die't drinkt, is eene kwezel Hy die't drinkt, is ras een ezel
Re: Password Reset
SQL injection? Check Apache or whatever log files. On Thu, Dec 16, 2010 at 4:17 PM, Gary gp...@paulgdesigns.com wrote: I recieved a call from a client saying the web site did not work, turns out the database password was reset, and not by me. In looking in the DB after the PW was reset, I could find nothing out of place, although frankly I was not sure what to look for. Is this indicitive of an attack? Is this something to worry about? I had (or so I assumed) plenty of protections on the files, including one of the more popular anit-spam/injection attack systems. Any guidance on this would be appriciated. -- Gary __ Information from ESET Smart Security, version of virus signature database 5708 (20101216) __ The message was checked by ESET Smart Security. http://www.eset.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=alejand...@olx.com -- Infrastructure Team OLX Inc. Buenos Aires - Argentina Phone : 54.11.4775.6696 Mobile : 54.911.50436059 Email: alejand...@olx.com
Re: Password Reset Not Working
Can someone please explain why I have 3 entries for root or if this is normal behavior for MySQL? I thought after a installation of MySQL, you normally have 2: 1 - localhost 2 - host.domain.com For some reason I had a 3rd entry: 3 - 127.0.0.1 I don't know if I did the right thing but I ran the following command: update user set host=localhost where host='127.0.0.1'; This basically changed the 127.0.0.1 entry in mysql databased, host section to localhost. I am not sure if MySQL needs to have the 3rd host entry for root that equals 127.0.0.1 or if it generally should just have the localhost and fqdn. Can anyone please clear this up for me? -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
It is important to understand deeply mysql client access control. Basically you need only one root account from the localhost for administration purposes. Keep in mind that when you login specifying 'localhost' (either by the -h flag or implicit) MySQL will use the mysql client socket interface, if you specify '127.0.0.1' it will use the TCP/IP port (3306). 'localhost' is a sort of keyword telling the client to use the unix socket file, '127.0.0.1' is bound to the tcp/ip port. Host matching is always done BEFORE user matching. MySQL sorts HOSTS with more specific entries on top and less ones on bottom ('%' wildcarded entries) MySQL sorts USERS with more specific entries on top and less ones on bottom ('' empty user) Bottom line, you need a triplet of USER-HOST-PASS for each account. having localhost AND 127.0.0.1 it is only related to the different connection method (socket , tcpip) for any other (remote) account tcp-ip will be used. I don't know if you are now more ore less confused! Claudio Carlos Williams wrote: Can someone please explain why I have 3 entries for root or if this is normal behavior for MySQL? I thought after a installation of MySQL, you normally have 2: 1 - localhost 2 - host.domain.com For some reason I had a 3rd entry: 3 - 127.0.0.1 I don't know if I did the right thing but I ran the following command: update user set host=localhost where host='127.0.0.1'; This basically changed the 127.0.0.1 entry in mysql databased, host section to localhost. I am not sure if MySQL needs to have the 3rd host entry for root that equals 127.0.0.1 or if it generally should just have the localhost and fqdn. Can anyone please clear this up for me? -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
On Fri, May 15, 2009 at 3:57 PM, Claudio Nanni claudio.na...@gmail.com wrote: I don't know if you are now more ore less confused! Claudio I would say less because you basically explained that I need to have localhost 127.0.0.1. Now my problem is that no longer have this and would like to know what I can do to resolve this by re-adding the 127.0.0.1 host / root user parameter back into MySQL. mysql use mysql; Reading table information for completion of table and column names You can turn off this feature to get a quicker startup with -A Database changed mysql select user, host, password from user; +---++--+ | user | host | password | +---++--+ | root | host.domain.com | 032c41e8435273a7 | | root | localhost | 032c41e8435273a7 | | roundcube | localhost | 032c41e8435273a7 | | mrbs | localhost | 6322a1af59897de4 | | phpbb| localhost | 5d2e19393cc5ef67 | +---++--+ 5 rows in set (0.00 sec) -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
Exactly, you need as many rows as many combination user/host we can also say that an account in MySQL is not the username BUT the username AND host combination. If you want to duplicate any account (also the root/localhost) do this: mysql show grants for 'root'@'localhost'; then have fun! Claudio Carlos Williams wrote: On Fri, May 15, 2009 at 3:57 PM, Claudio Nanni claudio.na...@gmail.com wrote: I don't know if you are now more ore less confused! Claudio I would say less because you basically explained that I need to have localhost 127.0.0.1. Now my problem is that no longer have this and would like to know what I can do to resolve this by re-adding the 127.0.0.1 host / root user parameter back into MySQL. mysql use mysql; Reading table information for completion of table and column names You can turn off this feature to get a quicker startup with -A Database changed mysql select user, host, password from user; +---++--+ | user | host | password | +---++--+ | root | host.domain.com | 032c41e8435273a7 | | root | localhost | 032c41e8435273a7 | | roundcube | localhost | 032c41e8435273a7 | | mrbs | localhost | 6322a1af59897de4 | | phpbb| localhost | 5d2e19393cc5ef67 | +---++--+ 5 rows in set (0.00 sec) -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
Hi Carlos Try this mysql update user set password=password('letmein') where user='root'; This way the password is saved encrypted, thats the way is compared when you try to log in. Carlos On 5/14/2009 5:28 PM, Carlos Williams wrote: I noticed today that I strangely was unable to login to MySQL as root. I just assumed I forgot the password and decided to reset my root password: 1 - /etc/init.d/mysqld stop 2 - mysqld_safe --skip-grant-tables 3 - mysql -u root 4 - mysql use mysql; mysql mysql update user set password='letmein' where user='root'; Query OK, 2 rows affected (0.00 sec) Rows matched: 2 Changed: 2 Warnings: 0 mysql flush privileges; mysql quit 5 - /etc/init.d/mysqld restart *Now after I do all that, I get the following:* mysql -u root -p Enter password: ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: YES) I have done this over and over and can't login so I am wondering if something is wrong with MySQL or am I just not properly resetting the password... Someone please help! -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
On Thu, May 14, 2009 at 6:31 PM, Carlos Proal carlos.pr...@gmail.com wrote: Hi Carlos Try this mysql update user set password=password('letmein') where user='root'; This way the password is saved encrypted, thats the way is compared when you try to log in. Thanks for the reply! I followed both methods in the following URL / link: http://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html#resetting-permissions-unix After doing both successfully, I was unable to login over and over. I think something is wrong with MySQL. I have never seen this before :( -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
Check how many root rows do you have on the user table (select * from user where user='root';), some times there are several rows with different grants and probably you are going through and invalid rule. Carlos On 5/14/2009 5:39 PM, Carlos Williams wrote: On Thu, May 14, 2009 at 6:31 PM, Carlos Proal carlos.pr...@gmail.com wrote: Hi Carlos Try this mysql update user set password=password('letmein') where user='root'; This way the password is saved encrypted, thats the way is compared when you try to log in. Thanks for the reply! I followed both methods in the following URL / link: http://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html#resetting-permissions-unix After doing both successfully, I was unable to login over and over. I think something is wrong with MySQL. I have never seen this before :( -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
On Thu, May 14, 2009 at 6:44 PM, Carlos Proal carlos.pr...@gmail.com wrote: Check how many root rows do you have on the user table (select * from user where user='root';), some times there are several rows with different grants and probably you are going through and invalid rule. I checked and when I ran the command you suggested: mysql use mysql; Database changed mysql select * from user where user='root'; I get a bunch of gibberish on the screen but the only thing I can make out are two entries for root: | mysql.unixslut.com | root | 6d21bd9609b168e4 | Y | Y | Y | 127.0.0.1| root | 6d21bd9609b168e4 | Y | Y | Y So what does this mean and how can I resolve this? I am trying this from the machine locally so I would assume localhost works fine... -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
try running the command like this select * from user where user='root' \G Capital G is a must. thanks Doug Carlos Williams wrote: On Thu, May 14, 2009 at 6:44 PM, Carlos Proal carlos.pr...@gmail.com wrote: Check how many root rows do you have on the user table (select * from user where user='root';), some times there are several rows with different grants and probably you are going through and invalid rule. I checked and when I ran the command you suggested: mysql use mysql; Database changed mysql select * from user where user='root'; I get a bunch of gibberish on the screen but the only thing I can make out are two entries for root: | mysql.unixslut.com | root | 6d21bd9609b168e4 | Y | Y | Y | 127.0.0.1| root | 6d21bd9609b168e4 | Y | Y | Y So what does this mean and how can I resolve this? I am trying this from the machine locally so I would assume localhost works fine... -- http://sfp.central.sun.com/ * Douglas Nelson * Senior Technical Consultant *Need Sun JES Help?* Software Field Practice Phone +1 877-234-2879/x51438 Mobile 919-259-3719 Email sfp-h...@sun.com http://blogs.sfbay/roller/page/sfp -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
The machine mysql.unixslut.com is not the same than localhost, right ??, If you only need root access from localhost you can delete the first row (delete from user where user='root' and host='mysql.unixslut.com';) Carlos On 5/14/2009 5:55 PM, Carlos Williams wrote: On Thu, May 14, 2009 at 6:44 PM, Carlos Proal carlos.pr...@gmail.com wrote: Check how many root rows do you have on the user table (select * from user where user='root';), some times there are several rows with different grants and probably you are going through and invalid rule. I checked and when I ran the command you suggested: mysql use mysql; Database changed mysql select * from user where user='root'; I get a bunch of gibberish on the screen but the only thing I can make out are two entries for root: | mysql.unixslut.com | root | 6d21bd9609b168e4 | Y | Y | Y | 127.0.0.1| root | 6d21bd9609b168e4 | Y | Y | Y So what does this mean and how can I resolve this? I am trying this from the machine locally so I would assume localhost works fine... -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
Carlos Proal wrote: The machine mysql.unixslut.com is not the same than localhost, right ??, If you only need root access from localhost you can delete the first row (delete from user where user='root' and host='mysql.unixslut.com';) Carlos On 5/14/2009 5:55 PM, Carlos Williams wrote: On Thu, May 14, 2009 at 6:44 PM, Carlos Proal carlos.pr...@gmail.com wrote: Check how many root rows do you have on the user table (select * from user where user='root';), some times there are several rows with different grants and probably you are going through and invalid rule. I checked and when I ran the command you suggested: mysql use mysql; Database changed mysql select * from user where user='root'; I get a bunch of gibberish on the screen but the only thing I can make out are two entries for root: | mysql.unixslut.com | root | 6d21bd9609b168e4 | Y | Y | Y | 127.0.0.1| root | 6d21bd9609b168e4 | Y | Y | Y So what does this mean and how can I resolve this? I am trying this from the machine locally so I would assume localhost works fine... Pardon, for butting in, but are you seriou? unix slut ? My first impression based on that would be, man you've been hacked! :-D -- Hervé Kempf: Pour sauver la planète, sortez du capitalisme. - Phil Jourdan --- p...@ptahhotep.com http://www.ptahhotep.com http://www.chiccantine.com/andypantry.php -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
On Thu, May 14, 2009 at 7:06 PM, Carlos Proal carlos.pr...@gmail.com wrote: The machine mysql.unixslut.com is not the same than localhost, right ??, If you only need root access from localhost you can delete the first row (delete from user where user='root' and host='mysql.unixslut.com';) Carlos, Yes, my machine mysql.unixslut.com is localhost / 127.0.0.1/8. They're both the same machine. It's just that I was told MySQL manages connection for users on a local / domain basis so that is the reason for both entries. In my opinion, both entries are valid. I could be wrong. **No, the server has not been hacked** Thanks for your continued support!] - Carlos -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: Password Reset Not Working
On Thu, May 14, 2009 at 7:01 PM, Douglas Nelson douglas.nel...@sun.com wrote: try running the command like this select * from user where user='root' \G Capital G is a must. I did the following: [r...@mysql ~]# /etc/init.d/mysqld stop Stopping MySQL:[ OK ] [r...@mysql ~]# mysqld_safe --skip-grant-tables [1] 3072 Starting mysqld daemon with databases from /var/lib/mysql [r...@mysql ~]# mysql -u root Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 1 Server version: 5.0.45 Source distribution Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql use mysql; Reading table information for completion of table and column names You can turn off this feature to get a quicker startup with -A Database changed mysql select * from user where user='root' \G *** 1. row *** Host: mysql.unixslut.com User: root Password: 6d24bd789879jhs Select_priv: Y Insert_priv: Y Update_priv: Y Delete_priv: Y Create_priv: Y Drop_priv: Y Reload_priv: Y Shutdown_priv: Y Process_priv: Y File_priv: Y Grant_priv: Y References_priv: Y Index_priv: Y Alter_priv: Y Show_db_priv: Y Super_priv: Y Create_tmp_table_priv: Y Lock_tables_priv: Y Execute_priv: Y Repl_slave_priv: Y Repl_client_priv: Y Create_view_priv: Y Show_view_priv: Y Create_routine_priv: Y Alter_routine_priv: Y Create_user_priv: Y ssl_type: ssl_cipher: x509_issuer: x509_subject: max_questions: 0 max_updates: 0 max_connections: 0 max_user_connections: 0 *** 2. row *** Host: 127.0.0.1 User: root Password: 6d24bd789879jhs Select_priv: Y Insert_priv: Y Update_priv: Y Delete_priv: Y Create_priv: Y Drop_priv: Y Reload_priv: Y Shutdown_priv: Y Process_priv: Y File_priv: Y Grant_priv: Y References_priv: Y Index_priv: Y Alter_priv: Y Show_db_priv: Y Super_priv: Y Create_tmp_table_priv: Y Lock_tables_priv: Y Execute_priv: Y Repl_slave_priv: Y Repl_client_priv: Y Create_view_priv: Y Show_view_priv: Y Create_routine_priv: Y Alter_routine_priv: Y Create_user_priv: Y ssl_type: ssl_cipher: x509_issuer: x509_subject: max_questions: 0 max_updates: 0 max_connections: 0 max_user_connections: 0 2 rows in set (0.00 sec) -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
Re: password for system user
On Tue, 04 Mar 2008 08:44:47 -0500, Dan Rogart wrote: You can have a file called .my.cnf in your home directory that stores it. Ah, thanks. I don't have a .my.cnf file in my home directory, but I do have something in /etc which seems to be what I'm after. I can get it working for logging into MySQL as the root db admin but can't add the rails MySQL user so that user thufir can login to MySQL as rails passing the password from /etc/my.cnf (too many pronouns for that to make sense). Some success: [EMAIL PROTECTED] ~ $ [EMAIL PROTECTED] ~ $ [EMAIL PROTECTED] ~ $ mysql -u root Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 20 Server version: 5.0.44-log Gentoo Linux mysql-5.0.44 Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql quit Bye [EMAIL PROTECTED] ~ $ head /etc/mysql/my.cnf -n 7 # /etc/mysql/my.cnf: The global mysql configuration file. # $Header: /var/cvsroot/gentoo-x86/dev-db/mysql/files/my.cnf-4.1,v 1.3 2006/05/05 19:51:40 chtekk Exp $ # The following options will be passed to all MySQL clients [client] user= root password= password [EMAIL PROTECTED] ~ $ do I need to create a local .my.cnf file? thanks, Thufir -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password for system user
Hi, On 3/5/08 5:58 AM, Thufir [EMAIL PROTECTED] wrote: On Tue, 04 Mar 2008 08:44:47 -0500, Dan Rogart wrote: You can have a file called .my.cnf in your home directory that stores it. Ah, thanks. I don't have a .my.cnf file in my home directory, but I do have something in /etc which seems to be what I'm after. I can get it working for logging into MySQL as the root db admin but can't add the rails MySQL user so that user thufir can login to MySQL as rails passing the password from /etc/my.cnf (too many pronouns for that to make sense). Some success: [EMAIL PROTECTED] ~ $ [EMAIL PROTECTED] ~ $ [EMAIL PROTECTED] ~ $ mysql -u root Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 20 Server version: 5.0.44-log Gentoo Linux mysql-5.0.44 Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql quit Bye [EMAIL PROTECTED] ~ $ head /etc/mysql/my.cnf -n 7 # /etc/mysql/my.cnf: The global mysql configuration file. # $Header: /var/cvsroot/gentoo-x86/dev-db/mysql/files/my.cnf-4.1,v 1.3 2006/05/05 19:51:40 chtekk Exp $ # The following options will be passed to all MySQL clients [client] user= root password= password [EMAIL PROTECTED] ~ $ do I need to create a local .my.cnf file? thanks, Thufir /etc/my.cnf sets things globally, so if you put your root password in there then anyone who logs on to that box can just type 'mysql' and log on to your database instance with root privileges. That may or may not be a problem for you. If you want to easily log in as the user 'rails' when you have logged in to the box as thufir, then yes, you should create a local .my.cnf file in ~/thufir with the rails credentials. I think that should do it for you. -Dan -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password for system user
You can have a file called .my.cnf in your home directory that stores it. This page outlines it pretty well: http://www.modwest.com/help/kb6-242.html In your case, you would just want to use the password = 'foo' part of it. -Dan On 3/4/08 4:10 AM, Thufir [EMAIL PROTECTED] wrote: I understand that there's a configuration so that instead of typing: [EMAIL PROTECTED] ~ $ mysql -u root -ppassword that the password (of password) is stored so that whenever this user connects as root the password is automatically passed. Is this possible? thanks, Thufir -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
If you can't access functions directly, you could implement a trigger on that row to intercept the password as it being written and do your MD5 encoding there. - michael On 8/18/07, C K [EMAIL PROTECTED] wrote: Thanks to all, but the problem is that I am using external programs to insert data and I can't use MySQL functions directly. Can I call/implement such type of functions using MS Access 2003? Thanks CPK The md5 function encrypts the input string. - With Warm Regards, Sudheer. S www.binaryvibes.co.in www.lampcomputing.com -- Keep your Environment clean and green. -- - michael dykman - [EMAIL PROTECTED] - All models are wrong. Some models are useful. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
On 8/18/07, C K [EMAIL PROTECTED] wrote: Friends, I have one question - How to store passwords in MySQL database table in a secure way so that no one can see the password(understand the password string)? It is considered bad security practice to store passwords using reversible encryption. The issue is that users tend to choose the same passwords across different computing systems, as well as personal e-mail and banking accounts. The most common method is to keep a string, known only to the server, that is used to help generate the MD5 or SHA1 hash actually stored. The stored value is then generated using something like: MD5(CONCAT(server_string, user_password, server_string)) In order to be able to mount some kind of an attack other than brute force, an attacker would need to also have the server_string. The disadvantage of using only the user password for the MD5 is that it lends itself to a dictionary attack. So, a bit of randomness thrown in is helpful. http://en.wikipedia.org/wiki/Dictionary_attack As another poster pointed out, the probability of two different passwords having the same hash is remote. Using the SHA1 (160 bits) as an example, and assuming about 64 different characters (6 bits) available for passwords, the SHA1 is about 26 characters of information. Remote. Dave.
Re: Password storage
Use MD5 function to encrypt the password column C K wrote: Friends, I have one question - How to store passwords in MySQL database table in a secure way so that no one can see the password(understand the password string)? Please help Thanks CPK -- Yoge, AdventNet, Inc. 925-965-6528 [EMAIL PROTECTED] site24x7.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
C K wrote: Friends, I have one question - How to store passwords in MySQL database table in a secure way so that no one can see the password(understand the password string)? Please help Thanks CPK mysql create table test01 (pass varchar(32)); Query OK, 0 rows affected (0.00 sec) mysql insert into test01 values (md5('textpassword')); Query OK, 1 row affected (0.01 sec) mysql select * from test01; +--+ | pass | +--+ | d1c7e2c37b0bb7d92548ac5594d00315 | +--+ 1 row in set (0.00 sec) The md5 function encrypts the input string. - With Warm Regards, Sudheer. S www.binaryvibes.co.in www.lampcomputing.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
Thanks to all, but the problem is that I am using external programs to insert data and I can't use MySQL functions directly. Can I call/implement such type of functions using MS Access 2003? Thanks CPK The md5 function encrypts the input string. - With Warm Regards, Sudheer. S www.binaryvibes.co.in www.lampcomputing.com -- Keep your Environment clean and green.
Re: Password storage
On Sat, August 18, 2007 15:53, C K wrote: Thanks to all, but the problem is that I am using external programs to insert data and I can't use MySQL functions directly. Can I call/implement such type of functions using MS Access 2003? MD5() is not an encryption function. The MySQL manual states: QUOTE MD5(str) Calculates an MD5 128-bit checksum for the string. The value is returned as a binary string of 32 hex digits, or NULL if the argument was NULL. The return value can, for example, be used as a hash key. mysql SELECT MD5('testing'); - 'ae2b1fca515949e5d54fb22b8ed95575' This is the “RSA Data Security, Inc. MD5 Message-Digest Algorithm.” /QUOTE You might want to look at ENCODE() and DECODE() functions. Again from the manual: QUOTE DECODE(crypt_str,pass_str) Decrypts the encrypted string crypt_str using pass_str as the password. crypt_str should be a string returned from ENCODE(). ENCODE(str,pass_str) Encrypt str using pass_str as the password. To decrypt the result, use DECODE(). The result is a binary string of the same length as str. The strength of the encryption is based on how good the random generator is. It should suffice for short strings. /QUOTE These are all functions you use in your sql statement, so yes. They can be used in MS Access. -- Later Mogens Melander +45 40 85 71 38 +66 870 133 224 -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
But you can use it for passwords (ask Unix)... You can't decode what the original password was, but you can encode the password they typed in and check the two hashes match - if they do - the chances are that the original passwords match (the odds against are huge!) On Saturday 18 August 2007 16:19, Mogens Melander wrote: MD5() is not an encryption function. The MySQL manual states: -- Mike Aubury Aubit Computing Ltd is registered in England and Wales, Number: 3112827 Registered Address : Murlain Business Centre, Union Street, Chester, CH1 1QP -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
On Sat, August 18, 2007 20:17, Mike Aubury wrote: But you can use it for passwords (ask Unix)... You can't decode what the original password was, but you can encode the password they typed in and check the two hashes match - if they do - the chances are that the original passwords match (the odds against are huge!) Well, i got the impression that OP wanted to retrieve the cleartext string, but i could be wrong. On Saturday 18 August 2007 16:19, Mogens Melander wrote: MD5() is not an encryption function. The MySQL manual states: -- Later Mogens Melander +45 40 85 71 38 +66 870 133 224 -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password storage
Hi, What are those external programs? If you are using a scripting language like PHP to insert data, you can still use all the MySQL functions in your query statements. I'm not sure how this is related to MS Access 2003. With Warm Regards, Sudheer. S www.binaryvibes.co.in www.lampcomputing.com C K wrote: Thanks to all, but the problem is that I am using external programs to insert data and I can't use MySQL functions directly. Can I call/implement such type of functions using MS Access 2003? Thanks CPK The md5 function encrypts the input string. - With Warm Regards, Sudheer. S www.binaryvibes.co.in www.lampcomputing.com
Re: Password on DB Files not on DB server
At 12:11 AM 2/11/2007, you wrote: This is true, if the db is still on same db server. Correct me if I am wrong, but it will not protect if some body copies the files to other DB server, then they can see the DB Suhas Suhas, You are correct. If the person has physical access to the MySQL table, then there is nothing you can do to protect it unless you want to encrypt individual columns using functions like AES_Encrypt() . But then you lose the ability to use or on those column indexes. See http://dev.mysql.com/doc/refman/5.0/en/encryption-functions.html for more info. Mike -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password on DB Files not on DB server
At 10:49 PM 2/10/2007, Suhas Pharkute wrote: Hi, I am sure this is been asked many times before, but seems like I could not find answer to it so here you go, Is there any way to put password on Data base(files) itself rather than DB server? See the Grant command to set up users where you can allow them access to certain tables. http://dev.mysql.com/doc/refman/5.1/en/grant.html If yes how to achive it? If no, any suggestions which db support that? Here is an article that may help. http://www.securityfocus.com/infocus/1667 Mike -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password on DB Files not on DB server
This is true, if the db is still on same db server. Correct me if I am wrong, but it will not protect if some body copies the files to other DB server, then they can see the DB Suhas On 2/10/07, mos [EMAIL PROTECTED] wrote: At 10:49 PM 2/10/2007, Suhas Pharkute wrote: Hi, I am sure this is been asked many times before, but seems like I could not find answer to it so here you go, Is there any way to put password on Data base(files) itself rather than DB server? See the Grant command to set up users where you can allow them access to certain tables. http://dev.mysql.com/doc/refman/5.1/en/grant.html If yes how to achive it? If no, any suggestions which db support that? Here is an article that may help. http://www.securityfocus.com/infocus/1667 Mike -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password on DB Files not on DB server
This is true, if the db is still on same db server. Correct me if I am wrong, but it will not protect if some body copies the files to other DB server, then they can see the DB Suhas On 2/10/07, mos [EMAIL PROTECTED] wrote: At 10:49 PM 2/10/2007, Suhas Pharkute wrote: Hi, I am sure this is been asked many times before, but seems like I could not find answer to it so here you go, Is there any way to put password on Data base(files) itself rather than DB server? See the Grant command to set up users where you can allow them access to certain tables. http://dev.mysql.com/doc/refman/5.1/en/grant.html If yes how to achive it? If no, any suggestions which db support that? Here is an article that may help. http://www.securityfocus.com/infocus/1667 Mike -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password on DB Files not on DB server
This is true, if the db is still on same db server. Correct me if I am wrong, but it will not protect if some body copies the files to other DB server, then they can see the DB Suhas
Re: Password hash should be a 41-digit hexadecimal number
[EMAIL PROTECTED] (Padmanabhan G) wrote in news:[EMAIL PROTECTED]: mysql create user [EMAIL PROTECTED] identified by password 'openpne'; Error 1372: Password hash should be a 41-digit hexadecimal number mysql create user [EMAIL PROTECTED] identified by 'openpne'; -- felix -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: Password hash should be a 41-digit hexadecimal number
Try this: GRANT USAGE ON *.* TO 'openpne'@'locahost' IDENTIFIED BY 'openpne' ; Or try this: create user 'openpne'@'localhost' identified by password 'openpne'; - Spell domain correctly - there was a typo - put quote around userid and domain -Original Message- From: Padmanabhan G [mailto:[EMAIL PROTECTED] Sent: Friday, February 02, 2007 3:18 AM To: mysql@lists.mysql.com Subject: Password hash should be a 41-digit hexadecimal number hi Issuing the grant command yields an error: mysql create user [EMAIL PROTECTED] identified by password 'openpne'; Error 1372: Password hash should be a 41-digit hexadecimal number -- With Thanks Regards G. Padmanabhan -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] This message is intended only for the use of the Addressee and may contain information that is PRIVILEGED and CONFIDENTIAL. If you are not the intended recipient, you are hereby notified that any dissemination of this communication is strictly prohibited. If you have received this communication in error, please erase all copies of the message and its attachments and notify us immediately. Thank you. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password problems using Mac OS X
Kevin - You can start up the MySQL server without password protection using the --skip-grant-tables option. Note that will leave your server wide open, so you may also want to use the --skip-networking option and access it through the socket on the same machine. Something like this I think: mysqld_safe --skip-grant-tables --old-passwords --user=root --skip-networking I know that Apple has packaged at least one MySQL update into the OS X 10.4.x updates. Is it possible that you got upgraded to MySQL 4.x during an Apple update? Perhaps your 3.23 installation still lives somewhere but now 4.x gets started up by the OS? Dan Kevin Felix wrote: Hi all, I've been using MySQL for over a year now and I didn't install anything special recently, yet I suddenly find myself locked out of MySQL. I'm using version 3.23.49 and I'm running Mac OS 10.4.6 fully up-to-date. I normally connect using the root-user but this afternoon I first got a socket error. Not the first time so I just reboot the server, socket error is gone but now I'm getting Access denied for user 'root'@'localhost' . I restarted the server a few times and even rebooted my system. I can't connect using php, terminal, MySQL Administrator, ... After a quick search on the http://dev.mysql.com/doc/refman/4.1/en/resetting-permissions.html page. I tried that but alas, no change... This might be a good time to update to MySQL 4 if I can get my data out, but I don't see that happening without me getting access to the server once again. Does anyone have a solution? Thank you for your time Kevin Felix [EMAIL PROTECTED] (e-mail) [EMAIL PROTECTED] (MSN-Messenger) ekefster (AIM) -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password problems using Mac OS X
Dan, A thousand times thanks for the fast reply, I just reset my password with MySQL Administrator now, everything is back the way it was! On a sidenote: I also saw this as the version MySQL 5.0.17-max via socket. The version 3 was through phpinfo(). My php install and other MySQL do all use the same database though. Does it matter what version phpinfo() is giving me? Kevin Felix Op 14-jun-06, om 05:18 heeft Dan Buettner het volgende geschreven: Kevin - You can start up the MySQL server without password protection using the --skip-grant-tables option. Note that will leave your server wide open, so you may also want to use the --skip-networking option and access it through the socket on the same machine. Something like this I think: mysqld_safe --skip-grant-tables --old-passwords --user=root --skip- networking I know that Apple has packaged at least one MySQL update into the OS X 10.4.x updates. Is it possible that you got upgraded to MySQL 4.x during an Apple update? Perhaps your 3.23 installation still lives somewhere but now 4.x gets started up by the OS? Dan Kevin Felix wrote: Hi all, I've been using MySQL for over a year now and I didn't install anything special recently, yet I suddenly find myself locked out of MySQL. I'm using version 3.23.49 and I'm running Mac OS 10.4.6 fully up- to-date. I normally connect using the root-user but this afternoon I first got a socket error. Not the first time so I just reboot the server, socket error is gone but now I'm getting Access denied for user 'root'@'localhost' . I restarted the server a few times and even rebooted my system. I can't connect using php, terminal, MySQL Administrator, ... After a quick search on the http://dev.mysql.com/doc/refman/4.1/en/ resetting-permissions.html page. I tried that but alas, no change... This might be a good time to update to MySQL 4 if I can get my data out, but I don't see that happening without me getting access to the server once again. Does anyone have a solution? Thank you for your time Kevin Felix [EMAIL PROTECTED] (e-mail) [EMAIL PROTECTED] (MSN-Messenger) ekefster (AIM) -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/mysql? [EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password for Root
Hi Restart mysqld with the --skip-grant-tables option More info : http://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html --Praj On Mon, 10 Apr 2006 12:57:32 +0600 Kosala Atapattu [EMAIL PROTECTED] wrote: Hi people, I have a small problem. I forgot the password for user root in my personal MySQL instance. I'm a Linux user and running Debian Sarge on my computer. I have few other DBs which I created and which I have access to (still I remember the passwords) but are not having access to MySQL database. Is there any way to recover from this situation. If I reinitialize the DB (somehow) how can I port my existing information back in to the initialized DB (without exporting and importing). Any Debian friends who can help me. Cheers, Kosala -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password for Root
At 02:57 PM 4/10/2006, Kosala Atapattu wrote: Hi people, I have a small problem. I forgot the password for user root in my personal MySQL instance. I'm a Linux user and running Debian Sarge on my computer. I have few other DBs which I created and which I have access to (still I remember the passwords) but are not having access to MySQL database. Is there any way to recover from this situation. If I reinitialize the DB (somehow) how can I port my existing information back in to the initialized DB (without exporting and importing). Any Debian friends who can help me. Cheers, Kosala -- HI Kosala, You can try to use this documentation. Thanks, Ehrwin MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] MySQL: changing forgotten root password (mysqld) Applicable to: Red Hat Linux Systems Updated: Mar 18, 2004 This Sheet describes the procedure how to change the root password of MySQL server. * Stop MySQL server if its running. * # service mysqld stop * Check that MySQL daemon has stopped * # ps -jef | grep mysqld * Start MySQL as root * # su - * # /usr/libexec/mysqld -Sg --user=root * Go back into MySQL with the client: * # mysql * mysql use mysql * Now change the MySQL root password * mysql UPDATE user SET password=password(newpassword) WHERE user=root; mysql flush privileges; mysql exit; * Stop MySQL server. * # killall mysqld * Verify that MySQL daemon is not running * # ps -jef | grep mysqld * Start MySQL the normal way, and all is good. For Red Hat this is: * # service mysqld start * Verify if MySQL daemon is running * # ps -jef | grep mysqld That's it. Jett Tayer and Ehrwin Mina Jett Tayer and Ehrwin Mina
Re: Password expire?
NiCK Song wrote: Hi, experts How can I make mysql database users password with expire date? Does mysql can do it? -- NiCK Set a DATE field with the time of expire. Then do something like SELECT * FROM users WHERE datefield_of_insert CURDATE(); HTH Barry -- Smileys rule (cX.x)C --o(^_^o) Dance for me! ^(^_^)o (o^_^)o o(^_^)^ o(^_^o) -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password expire?
NiCK Song [EMAIL PROTECTED] wrote on 04/04/2006 11:05:57 PM: Hi, experts How can I make mysql database users password with expire date? Does mysql can do it? -- NiCK Sorry!! MySQL does not auto-expire any user accounts. You will need to script something to do that manually on a schedule you want to set. Shawn Green Database Administrator Unimin Corporation - Spruce Pine
Re: Password expire?
On 4/5/06, NiCK Song [EMAIL PROTECTED] wrote: Hi, experts How can I make mysql database users password with expire date? Does mysql can do it? -- NiCK -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] I guess you'll have to build it in your app. MySQL doesn't support anything like this (or at least I couldn't find it). I use a method like this: My server has TWO accounts, when the user logs on my app with its name/password, PHP connects using a read-only account to check if the name/pass is valid accourding to a table named users at the test database, and it also checks a datetime value named expire at the same table, if the password is no longer valid, PHP denies access, else it makes another connection, this time with an account with read-write privileges so the user is logged into the app. -- Daniel da Veiga Computer Operator - RS - Brazil -BEGIN GEEK CODE BLOCK- Version: 3.1 GCM/IT/P/O d-? s:- a? C++$ UBLA++ P+ L++ E--- W+++$ N o+ K- w O M- V- PS PE Y PGP- t+ 5 X+++ R+* tv b+ DI+++ D+ G+ e h+ r+ y++ --END GEEK CODE BLOCK-- -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password? getting started
Got it started: [EMAIL PROTECTED] ~]# service mysqld start Initializing MySQL database: Installing all prepared tables Fill help tables ERROR: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1 060201 3:46:14 [ERROR] Aborting 060201 3:46:14 [Note] /usr/libexec/mysqld: Shutdown complete WARNING: HELP FILES ARE NOT COMPLETELY INSTALLED! The HELP command might not work properly To start mysqld at boot time you have to copy support-files/mysql.server to the right place for your system PLEASE REMEMBER TO SET A PASSWORD FOR THE MySQL root USER ! To do so, start the server, then issue the following commands: /usr/bin/mysqladmin -u root password 'new-password' /usr/bin/mysqladmin -u root -h localhost.localdomain password 'new-password' See the manual for more instructions. You can start the MySQL daemon with: cd /usr ; /usr/bin/mysqld_safe You can test the MySQL daemon with the benchmarks in the 'sql-bench' directory: cd sql-bench ; perl run-all-tests Please report any problems with the /usr/bin/mysqlbug script! The latest information about MySQL is available on the web at http://www.mysql.com Support MySQL by buying support/licenses at https://order.mysql.com [ OK ] Starting MySQL:[ OK ] [EMAIL PROTECTED] ~]# date Wed Feb 1 03:46:44 EST 2006 [EMAIL PROTECTED] ~]# nano sql.2.txt [EMAIL PROTECTED] ~]# /usr/bin/mysqladmin -u root password 'password' [EMAIL PROTECTED] ~]# mysql -u root -p Enter password: Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 3 to server version: 4.1.16 Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql quit Bye [EMAIL PROTECTED] ~]# date Wed Feb 1 03:48:43 EST 2006 [EMAIL PROTECTED] ~]# heh. Now I just have to figure out how to do stuff! :) -Thufir -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password? getting started
Ok, I logged on to the GUI Administrator as: root localhost /var/lib/mysql/mysql.sock from my linux user account. Tad confusing, as to which root is being referred to. If I, for instance, restart they system I'll need to manually restart the database? Or, if for some other reason the database is stopped it must be restarted? Hmm. And there are different levels of users for the database, apparently. Bit of adjustment required! -Thufir -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password(), sha1() and md5()
On 18/08/2005, Martin Schwarz wrote: When using 'update TABLE set FIELD=PASSWORD('foo');' the query 'select * from TABLE where FIELD=PASSWORD('foo');' delivers an empty set. Same with the SHA1 or MD5 functions. What is the data type of your FIELD column? -- felix -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password is lose
Hi Stone, no offense, but that one you should really be able to answer yourself Hello all, I'm having a bit of trouble:. Welcome to phpMyAdmin 2.5.0-rc1 Error MySQL said: Access denied for user: '[EMAIL PROTECTED]' (Using password: NO) how can I find my password? Look carefully at the command prompt what you typed to lo into the mysql server or the GUI which you used. Hint: Did you specify a password for the login ? Hope that makes things clearer. Best regards Nils Valentin Tokyo / Japan http://www.be-known-online.com Thanks as always! -Stone.wang -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password is lose
Hello. See: http://dev.mysql.com/doc/mysql/en/access-denied.html http://dev.mysql.com/doc/mysql/en/resetting-permissions.html Hello all, I'm having a bit of trouble:. Welcome to phpMyAdmin 2.5.0-rc1 Error MySQL said: Access denied for user: '[EMAIL PROTECTED]' (Using password: NO) how can I find my password? stone.wang [EMAIL PROTECTED] wrote: -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.NET http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Gleb Paharenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.NET ___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password is lose
On Fri, May 20, 2005 at 09:28:40AM -, [EMAIL PROTECTED] wrote: Hint: Did you specify a password for the login ? I suspect the original poster was saying that he doesn't remember setting a password, so he doesn't know what password to enter. -Jason Martin -- Unrecoverable Application ERROR - Detonation follows. This message is PGP/MIME signed. pgpXdR848wy3b.pgp Description: PGP signature
Re: Password (str) vs. MD5 (str)
On Mon, Dec 06, 2004 at 04:21:38PM -0600, [EMAIL PROTECTED] wrote: does anyone know what type of encryption is used in the PASSWORD(str) function? When would you use the MD5 vs the PASSWORD function? We have a campus standard to use the MD5 encryption so I need to confirm if the PASSWORD function will offer that or not. As the manual says, the PASSWORD() function should not be used within your application. It is meant only for use with the built-in MySQL privilege tables. Use MD5() or SHA1() for your own applications. Jim Winstead MySQL Inc. -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password guessing attacks against mysql
No, it is not true. After repeated failed connection attempts from a host that host will be blocked until a flush hosts command is executed. The number allowed before this blocking is specified by the variable max_connect_errors. See http://dev.mysql.com/doc/mysql/en/Blocked_host.html John From: Dave Dyer [mailto:[EMAIL PROTECTED] Sent: Sat 10/30/2004 2:01 PM To: [EMAIL PROTECTED] Subject: password guessing attacks against mysql While discussing the hazards of having an open mysql port, it occurred to me that I have never seen any mention of defenses against password guessing attacks, such as slow response to failed authentication, or shutting of a particular remote IP that seems to be issuing unsucessful requests. Is it true that there are none? -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password() function
At 11:41 -0400 10/11/04, Jerry Swanson wrote: I create table and used password // CHAR(15) select password('123456'); ++ | password('123456') | ++ | 565491d704013245 | ++ //INT(10) +-+ | password| +-+ | 565491d70401324 | When I used char(15) the data was not complete. What data type I should use for password function? Actually, you should use a different function than PASSWORD(), which should be used only in connection with account information in the grant tables in the mysql database. SHA() or MD5() some possibilities. See this section in the manual: http://dev.mysql.com/doc/mysql/en/Encryption_functions.html -- Paul DuBois, MySQL Documentation Team Madison, Wisconsin, USA MySQL AB, www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Password displayed in process list
Alek, Create a file of any name, e.g. script.cnf. Put the following in it, [client] user = dba password = dba_pass Run mysql with the --defaults-file arg mysql --defaults-file=script.cnf So long as the cnf file is only readable by the the cronjob owner this will provide the level of security you require. Richard. For more info see, http://dev.mysql.com/doc/mysql/en/Option_files.html - Original Message - From: Aleksandar Mihajlovic [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, May 30, 2004 8:03 PM Subject: Password displayed in process list Hi, I am new to MySQL and have one question. I would like to run mysql job as a batch job (scheduled through cron) and have to provide password to the batch job: mysql -udba -ppassword My concern that anybody running: ps -ef will be able to see the password when job is run. Is there any way to run mysql as a batch job with mysql -udba -p and pump a password from inside your script. Something like: mysql -udba -p EOF .hidden_pwd_file use mysql select * EOF I've tried a few things but I am out of ideas. Any help would be appreciated. Alek - Do you Yahoo!? Friends. Fun. Try the all-new Yahoo! Messenger -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: Password error
You can try using the old-passwords option in the my.cnf file or you can try building your ODBC driver from the bitkeeper source. I would check the documentation to verify that the ODBC build you have supports the 4.1.+ servers. -Original Message- From: Arthur Maloney To: [EMAIL PROTECTED] Sent: 5/19/04 12:28 PM Subject: Password error Hello MySQL Listers, Using myODBC 3.51.07, Win2k SP4, ADO 2.7 mySQL5 If I make the connection when user account does not have a password it works. If I set a password I get the error below ??? Which MySQL client is it referring to?? Any suggestions regarding connection string ?? err No -2147467259 [MySQL][ODBC 3.51 Driver]Client does not support authentication protocol requested by server; consider upgrading MySQL client cnn.ConnectionString = DRIVER={MySQL ODBC 3.51 Driver}; _ SERVER= strServerName ; _ DATABASE= strDBName ; _ UID= strLogin ; _ PWD= strPassword ; _ OPTION=3 also tried ' OPTION= 1 + 2 + 8 + 32 + 2048 + 163841 -- Best regards, Arthur mailto:[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
thanks all, it works (i just increase it to 20) but one more thing, now if i want to get this password (e.g for option forget password), can we retrieve, i believe we can not- just want to confirm manisha - Original Message - From: Paul DuBois [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, October 15, 2003 11:05 PM Subject: Re: PASSWORD() function problem At 17:26 +0800 10/15/03, Manisha Sathe wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? Thanks in advance Manisha Please consider using something other than PASSWORD(), as noted in the description for that function at: http://www.mysql.com/doc/en/Miscellaneous_functions.html PASSWORD() should not be used for your own applications. -- Paul DuBois, Senior Technical Writer Madison, Wisconsin, USA MySQL AB, www.mysql.com Are you MySQL certified? http://www.mysql.com/certification/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
all encryption functions are one way only Nitin - Original Message - From: Manisha Sathe [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 6:46 PM Subject: Re: PASSWORD() function problem thanks all, it works (i just increase it to 20) but one more thing, now if i want to get this password (e.g for option forget password), can we retrieve, i believe we can not- just want to confirm manisha - Original Message - From: Paul DuBois [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, October 15, 2003 11:05 PM Subject: Re: PASSWORD() function problem At 17:26 +0800 10/15/03, Manisha Sathe wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? Thanks in advance Manisha Please consider using something other than PASSWORD(), as noted in the description for that function at: http://www.mysql.com/doc/en/Miscellaneous_functions.html PASSWORD() should not be used for your own applications. -- Paul DuBois, Senior Technical Writer Madison, Wisconsin, USA MySQL AB, www.mysql.com Are you MySQL certified? http://www.mysql.com/certification/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
PASSWORD() is a one-way function (I was confirming just). Though, it has worked for you, please consider the advice of Paul in his previous Email when he recommended you read about PASSWORD() at the URL: http://www.mysql.com/doc/en/Miscellaneous_functions.html Thanks Emery - Original Message - From: Manisha Sathe [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 15:16 Subject: Re: PASSWORD() function problem thanks all, it works (i just increase it to 20) but one more thing, now if i want to get this password (e.g for option forget password), can we retrieve, i believe we can not- just want to confirm manisha - Original Message - From: Paul DuBois [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, October 15, 2003 11:05 PM Subject: Re: PASSWORD() function problem At 17:26 +0800 10/15/03, Manisha Sathe wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? Thanks in advance Manisha Please consider using something other than PASSWORD(), as noted in the description for that function at: http://www.mysql.com/doc/en/Miscellaneous_functions.html PASSWORD() should not be used for your own applications. -- Paul DuBois, Senior Technical Writer Madison, Wisconsin, USA MySQL AB, www.mysql.com Are you MySQL certified? http://www.mysql.com/certification/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
Manisha Sathe [EMAIL PROTECTED] wrote: thanks all, it works (i just increase it to 20) Please, don't use PASSWORD() function in your own application, use MD5() or SHA1() instead. but one more thing, now if i want to get this password (e.g for option forget password), can we retrieve, i believe we can not- just want to confirm You can't. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Victoria Reznichenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
Hi, If I remember, ENCODE() is reversible using DECODE() or something similar. I might be wrong, just check the manual!!! Thanks Emery - Original Message - From: Nitin [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 16:13 Subject: Re: PASSWORD() function problem all encryption functions are one way only Nitin - Original Message - From: Manisha Sathe [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 6:46 PM Subject: Re: PASSWORD() function problem thanks all, it works (i just increase it to 20) but one more thing, now if i want to get this password (e.g for option forget password), can we retrieve, i believe we can not- just want to confirm manisha - Original Message - From: Paul DuBois [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, October 15, 2003 11:05 PM Subject: Re: PASSWORD() function problem At 17:26 +0800 10/15/03, Manisha Sathe wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? Thanks in advance Manisha Please consider using something other than PASSWORD(), as noted in the description for that function at: http://www.mysql.com/doc/en/Miscellaneous_functions.html PASSWORD() should not be used for your own applications. -- Paul DuBois, Senior Technical Writer Madison, Wisconsin, USA MySQL AB, www.mysql.com Are you MySQL certified? http://www.mysql.com/certification/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
Thanks all, it helped me a lot Manisha - Original Message - From: Director General: NEFACOMP [EMAIL PROTECTED] To: Nitin [EMAIL PROTECTED]; Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 10:56 PM Subject: Re: PASSWORD() function problem Hi, If I remember, ENCODE() is reversible using DECODE() or something similar. I might be wrong, just check the manual!!! Thanks Emery - Original Message - From: Nitin [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 16:13 Subject: Re: PASSWORD() function problem all encryption functions are one way only Nitin - Original Message - From: Manisha Sathe [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, October 16, 2003 6:46 PM Subject: Re: PASSWORD() function problem thanks all, it works (i just increase it to 20) but one more thing, now if i want to get this password (e.g for option forget password), can we retrieve, i believe we can not- just want to confirm manisha - Original Message - From: Paul DuBois [EMAIL PROTECTED] To: Manisha Sathe [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, October 15, 2003 11:05 PM Subject: Re: PASSWORD() function problem At 17:26 +0800 10/15/03, Manisha Sathe wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? Thanks in advance Manisha Please consider using something other than PASSWORD(), as noted in the description for that function at: http://www.mysql.com/doc/en/Miscellaneous_functions.html PASSWORD() should not be used for your own applications. -- Paul DuBois, Senior Technical Writer Madison, Wisconsin, USA MySQL AB, www.mysql.com Are you MySQL certified? http://www.mysql.com/certification/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
On Wed, 15 Oct 2003 17:26:23 +0800 Manisha Sathe [EMAIL PROTECTED] wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? mem_pass field should be at least 16 characters lengthwise to store result of PASSWORD() check it, plz. --- WBR, Antony Dovgal aka tony2001 [EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: PASSWORD() function problem
At 17:26 +0800 10/15/03, Manisha Sathe wrote: Hi, I inserted one record thr PHPMyAdmin - mem_pass field of member table set to xyz using function 'PASSWORD' Then trying to select the same - select * from member where mem_pass = PASSWORD('xyz') - then it is not getting selected I do not know why I am not getting the result. please help me. what's going wrong ? Thanks in advance Manisha Please consider using something other than PASSWORD(), as noted in the description for that function at: http://www.mysql.com/doc/en/Miscellaneous_functions.html PASSWORD() should not be used for your own applications. -- Paul DuBois, Senior Technical Writer Madison, Wisconsin, USA MySQL AB, www.mysql.com Are you MySQL certified? http://www.mysql.com/certification/ -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password
Gantier [EMAIL PROTECTED] wrote: Is it possible to load from the database a field entry with password(XXX) and see it not crypted, as if we 've made a unpassword(XXX) action ? Nope. This encryption is non-reversible. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Victoria Reznichenko / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: re: RE: password not working from command line
On Friday 04 April 2003 04:02, you wrote: The logon now works after DELETE FROM user WHERE user= It's still crashing when a remote logon is attempted. The copy of the modified my.cnf file is attached. What exactly OS do you use? What version of MySQL server do you use? Did oyu install MySQL server from official binary distribution or compile it by yourself? -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Egor Egorov / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
re: RE: password not working from command line
On Wednesday 02 April 2003 17:19, Eldon Ziegler wrote: The contents of the user file are attached. The user name is testit and there is no password. This is server version 3.23.52, the version that came with the Red Hat 8 distribution. I entered mysql -utestit then USE mysql; and got ERROR 1044: Access denied for user: '@local host' to database 'mysql' Why no user name before the @? Because you connect to the MySQL server as anonymous user. From the manual: Note: if you allow anonymous users to connect to the MySQL server, you should also grant privileges to all local users as [EMAIL PROTECTED] because otherwise the anonymous user entry for the local host in the mysql.user table will be used when the user tries to log into the MySQL server from the local machine! Additionally, I tried to access mysql remotely with an app known to work on other installations of mysql and got, on the Linux machine running mysqld, /usr/bin/safe_mysql: line 273: 840 Segmentation fault ... output omitted Number of processes running now: 1 mysqld process hanging, pid 843 - killed 030402 09:02:24 mysqld restarted Is this distribution any good? Try to add set-variable = thread_stack=256K to the [mysqld] section of my.cnf. -- For technical support contracts, goto https://order.mysql.com/?ref=ensita This email is sponsored by Ensita.net http://www.ensita.net/ __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Egor Egorov / /|_/ / // /\ \/ /_/ / /__ [EMAIL PROTECTED] /_/ /_/\_, /___/\___\_\___/ MySQL AB / Ensita.net ___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password not working from command line
The contents of the user file are attached. The user name is testit and there is no password. This is server version 3.23.52, the version that came with the Red Hat 8 distribution. I entered mysql -utestit then USE mysql; and got ERROR 1044: Access denied for user: '@local host' to database 'mysql' Why no user name before the @? Additionally, I tried to access mysql remotely with an app known to work on other installations of mysql and got, on the Linux machine running mysqld, /usr/bin/safe_mysql: line 273: 840 Segmentation fault ... output omitted Number of processes running now: 1 mysqld process hanging, pid 843 - killed 030402 09:02:24 mysqld restarted Is this distribution any good? Eldon Ziegler President ProAtion Systems, Inc. www.proation.comlocalhost rootY Y Y Y Y Y Y Y Y Y Y Y Y Y UtilServer rootY Y Y Y Y Y Y Y Y Y Y Y Y Y localhost N N N N N N N N N N N N N N UtilServer N N N N N N N N N N N N N N % testit Y Y Y Y Y Y Y Y Y Y N Y Y Y -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password not working from command line
Eldon, It looks like you have left in the records with a blank username for localhost and for UtilServer. The following description is taken from http://www.mysql.com/doc/en/Connection_access.html and my own experimentation to validate that this works on Windows, too. The authentication system matches based on most specific host name first. Using your user table, let's say that user testit wants to connect from localhost. The sorted user table (sorted by host, user desc), looks like this: Localhost root Localhost blank UtilServer root UtilServer blank % testit The authentication tries to match the [EMAIL PROTECTED] So first, it sees it if matches with [EMAIL PROTECTED] Finds no match. Goes to the next: [EMAIL PROTECTED] Unfortunately, this matches, so that's how you're logged it. If you do mysql select current_user(); you should see that you're connected as %localhost, with no username. Given your user table, that user has no rights. For the purpose of experimentation, delete the rows in the user table that have no username. You should see that things work as you expect. mysql delete from user where user = ; mysql flush privileges; mysql quit; See also http://www.mysql.com/doc/en/Miscellaneous_functions.html. Compare the CURRENT_USER() function with the USER() function. CURRENT_USER() gives you the name you were authenticated as. -ms -Original Message- From: Eldon Ziegler [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 02, 2003 3:56 AM To: Michael Shulman Subject: RE: password not working from command line Michael, The result of a SELECT * INTO OUTFILE FROM user is attached. Thanks Eldon At 02:53 pm 4/1/2003 -0800, you wrote: Eldon, What are the contents of your user file? Try this: mysql select user, host, password from user; -ms -Original Message- From: Eldon Ziegler [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 01, 2003 2:14 PM To: Michael Shulman Subject: RE: password not working from command line I'm still getting Access denied for user: '@localhost' to database 'mysql' when I enter mysql --user=testit mysql on the Linux command line. This time I'm trying without a password. Previously I had entered the command GRANT ALL ON *.* TO testit. It looks like it's not picking up the user name. At 12:24 pm 4/1/2003 -0800, you wrote: Or, you can use the alternate, more legible syntax: mysql --user=username --password=pass -ms -Original Message- From: Andy Eastham [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 01, 2003 10:36 AM To: [EMAIL PROTECTED] Mysql. Com Subject: RE: password not working from command line Eldon, Make sure you don't enter a space between -u and the username and -p and the password ie mysql -uuser -ppassword Andy -Original Message- From: Eldon Ziegler [mailto:[EMAIL PROTECTED] Sent: 01 April 2003 16:15 To: [EMAIL PROTECTED] Subject: password not working from command line The password I entered in a GRANT statement isn't being accepted from the command line after entering mysql -u username -p and then entering the password from the GRANT statement. Is there something else I need to do? -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] Eldon Ziegler President ProAtion Systems, Inc. www.proation.com Eldon Ziegler President ProAtion Systems, Inc. www.proation.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password not working from command line
Eldon, Make sure you don't enter a space between -u and the username and -p and the password ie mysql -uuser -ppassword Andy -Original Message- From: Eldon Ziegler [mailto:[EMAIL PROTECTED] Sent: 01 April 2003 16:15 To: [EMAIL PROTECTED] Subject: password not working from command line The password I entered in a GRANT statement isn't being accepted from the command line after entering mysql -u username -p and then entering the password from the GRANT statement. Is there something else I need to do? -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password not working from command line
Or, you can use the alternate, more legible syntax: mysql --user=username --password=pass -ms -Original Message- From: Andy Eastham [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 01, 2003 10:36 AM To: [EMAIL PROTECTED] Mysql. Com Subject: RE: password not working from command line Eldon, Make sure you don't enter a space between -u and the username and -p and the password ie mysql -uuser -ppassword Andy -Original Message- From: Eldon Ziegler [mailto:[EMAIL PROTECTED] Sent: 01 April 2003 16:15 To: [EMAIL PROTECTED] Subject: password not working from command line The password I entered in a GRANT statement isn't being accepted from the command line after entering mysql -u username -p and then entering the password from the GRANT statement. Is there something else I need to do? -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: password not working from command line
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Eldon, et al -- ...and then Michael Shulman said... % % Or, you can use the alternate, more legible syntax: % % mysql --user=username --password=pass Or, better yet, you can use mysql -uusername -p [database] or mysql -user=username -p [database] to not expose the password on the command line. That, in fact, seems to be what Eldon was doing, as I read his original email, so there may be a problem that we don't yet see. So the reply simply becomes give us more detail and actual examples. HTH HAND mysql query, :-D - -- David T-G * There is too much animal courage in (play) [EMAIL PROTECTED] * society and not sufficient moral courage. (work) [EMAIL PROTECTED] -- Mary Baker Eddy, Science and Health http://justpickone.org/davidtg/ Shpx gur Pbzzhavpngvbaf Qrprapl Npg! -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQE+igbtGb7uCXufRwARAspVAJ9jc10b0Yu0YBX9jp17MTeujfwJvACgxtOo EruB7YQ0ifu5RenOoxKNt1c= =5jyb -END PGP SIGNATURE- -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password not working from command line
Andy Eastham wrote: Make sure you don't enter a space between -u and the username and -p and the password ie mysql -uuser -ppassword Actually, that works for me, i.e. C:\Program Files\mysql40\binmysql -u root -p Enter password: * Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 12 to server version: 4.0.12-max-debug Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql But now it gets weird. I should have said: that *used* to work for me. Earlier today I was working with that password issue from the other password thread, and I had finally got it all working the way I expected it to. Now I'm trying to answer Andy, and I find that it *no longer works*! Not even if I leave out the space between -u and root. Arrgh! The only thing that has changed since then is that I did shut down the server for a while. I can still make it work when I enter C:\Program Files\mysql40\binmysql -u root -px Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 12 to server version: 4.0.12-max-debug Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql Note the space between -u and root, and no space between -p and the password. (If I put a space in there, it doesn't see the password.) As was pointed out, it's not a good idea to put the password on the command line, since that puts it in plain text. OK, so what the heck is going on here Does MySQL have gremlins? Is this the same problem that Weldon was complaining about? -- Helge Moulding mailto:[EMAIL PROTECTED]Just another guy http://hmoulding.cjb.net/ with a weird name ___ Join Excite! - http://www.excite.com The most personalized portal on the Web! -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: password not working from command line
Privilege changes (at least on Windows) don't seem to take effect until either (a) the server is restarted, or (b) the server is instructed to re-read its permissions tables. The best solution I've found is to include the line flush privileges into Mysql sessions that manipulate users or permissions. -ms -Original Message- From: Helge Moulding [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 01, 2003 3:07 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: password not working from command line Andy Eastham wrote: Make sure you don't enter a space between -u and the username and -p and the password ie mysql -uuser -ppassword Actually, that works for me, i.e. C:\Program Files\mysql40\binmysql -u root -p Enter password: * Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 12 to server version: 4.0.12-max-debug Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql But now it gets weird. I should have said: that *used* to work for me. Earlier today I was working with that password issue from the other password thread, and I had finally got it all working the way I expected it to. Now I'm trying to answer Andy, and I find that it *no longer works*! Not even if I leave out the space between -u and root. Arrgh! The only thing that has changed since then is that I did shut down the server for a while. I can still make it work when I enter C:\Program Files\mysql40\binmysql -u root -px Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 12 to server version: 4.0.12-max-debug Type 'help;' or '\h' for help. Type '\c' to clear the buffer. mysql Note the space between -u and root, and no space between -p and the password. (If I put a space in there, it doesn't see the password.) As was pointed out, it's not a good idea to put the password on the command line, since that puts it in plain text. OK, so what the heck is going on here Does MySQL have gremlins? Is this the same problem that Weldon was complaining about? -- Helge Moulding mailto:[EMAIL PROTECTED]Just another guy http://hmoulding.cjb.net/ with a weird name ___ Join Excite! - http://www.excite.com The most personalized portal on the Web! -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
RE: Password problem
When connecting from a command line, mysql uses 3 of the columns in the user table to decide whether or not to grant access. These are host, user, and password. Note that in your results below, there is no localhost-newsletter-testPass combination. What the table shows is that clients from any host other than localhost can log in to a mysql client using the newsletter and testPass combination. If you want to login using a client on the same machine that you're running mysql, you need to add another entry to the user table, i.e., GRANT ALL PRIVILIGES ON newsletter.* TO newsletter@localhost IDENTIFIED BY 'testPass' It took me a while to figure that one out, but it's saved me a lot of frustration knowing it now. I guess I don't understand why localhost isn't included in the % wildcard for the host column in this table. Anybody? John Arnold Director, IT Web Strategies 2k3 Technologies 915.439.1660 -Original Message- From: Neil Aggarwal [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 15, 2003 11:00 AM To: Mysql list Subject: Password problem Hello: As the root user, I created a new database and user account: CREATE DATABASE newsletter; GRANT ALL PRIVILEGES ON newsletter.* TO newsletter IDENTIFIED BY 'testPass'; FLUSH PRIVILEGES; I then tried to access the databse via the command-line client: /usr/local/mysql/bin/mysql -u newsletter -ptestPass newsletter And I get this error: ERROR 1045: Access denied for user: 'newsletter@localhost' (Using password: YES) I checked that mysql has it set-up correctly in the user and db tables by logging in as the root account. select * from user give me this line: | % | newsletter | 61fa73f50740c213 | N | N | N | N | N | N | N | N | N| N | N | N | N | N select * from db gives me this line: | % | newsletter | newsletter | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Any ideas? Thanks, Neil. -- Neil Aggarwal JAMM Consulting, Inc.(972) 612-6056, http://www.JAMMConsulting.com Custom Internet DevelopmentWebsites, Ecommerce, Java, databases - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
RE: Re: Password problem
Nasser wrote: it looks as though you have created the newsletter user with plain text password. mysql will compare the user password against the encrypted password and will fail. Look at the password entry in the results below starting with 61fa If the password had been stored as plain text, it would show as 'testPass'. The only way I've been able to get an unencrypted password into this table (quite unintentionally, I assure you) is to update the table directly as in update user set password='testPass' where user = 'newsletter'; Of course, this was back when I was scratching my head over the same problem below... John Arnold Director, IT Web Strategies 2k3 Technologies 915.439.1660 = Hello: As the root user, I created a new database and user account: CREATE DATABASE newsletter; GRANT ALL PRIVILEGES ON newsletter.* TO newsletter IDENTIFIED BY 'testPass'; FLUSH PRIVILEGES; I then tried to access the databse via the command-line client: /usr/local/mysql/bin/mysql -u newsletter -ptestPass newsletter And I get this error: ERROR 1045: Access denied for user: 'newsletter@localhost' (Using password: YES) I checked that mysql has it set-up correctly in the user and db tables by logging in as the root account. select * from user give me this line: | % | newsletter | 61fa73f50740c213 | N | N | N | N | N | N | N | N | N| N | N | N | N | N select * from db gives me this line: | % | newsletter | newsletter | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Any ideas? Yes. See Chapter 4.3.5 of the mysql manual. Note that we must issue GRANT statements for both monty@localhost and monty@%. hth, Doug Thanks, Neil. -- Neil Aggarwal JAMM Consulting, Inc.(972) 612-6056, http://www.JAMMConsulting.com Custom Internet DevelopmentWebsites, Ecommerce, Java, databases - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password problem
On Wed, 15 Jan 2003 11:00:21 -0600, Neil Aggarwal wrote: Hello: As the root user, I created a new database and user account: CREATE DATABASE newsletter; GRANT ALL PRIVILEGES ON newsletter.* TO newsletter IDENTIFIED BY 'testPass'; FLUSH PRIVILEGES; I then tried to access the databse via the command-line client: /usr/local/mysql/bin/mysql -u newsletter -ptestPass newsletter And I get this error: ERROR 1045: Access denied for user: 'newsletter@localhost' (Using password: YES) I checked that mysql has it set-up correctly in the user and db tables by logging in as the root account. select * from user give me this line: | % | newsletter | 61fa73f50740c213 | N | N | N | N | N | N | N | N | N| N | N | N | N | N select * from db gives me this line: | % | newsletter | newsletter | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Any ideas? Yes. See Chapter 4.3.5 of the mysql manual. Note that we must issue GRANT statements for both monty@localhost and monty@%. hth, Doug Thanks, Neil. -- Neil Aggarwal JAMM Consulting, Inc.(972) 612-6056, http://www.JAMMConsulting.com Custom Internet DevelopmentWebsites, Ecommerce, Java, databases - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password problem
Neil, GRANT ALL PRIVILEGES ON newsletter.* TO newsletter IDENTIFIED BY 'testPass'; FLUSH PRIVILEGES; I then tried to access the databse via the command-line client: /usr/local/mysql/bin/mysql -u newsletter -ptestPass newsletter And I get this error: ERROR 1045: Access denied for user: 'newsletter@localhost' (Using password: YES) I don't know if you have any other entries in the mysql.user / mysql.db tables. If so, there could be another entry for 'newsletter'@'something_else_but_not_%'. Whatever the reason - it's always a good idea to specify user names the classical MySQL way, i. e. 'user'@'machine', and not - as in most other DBMS - only as 'user'. What the manual says about it, is: The simple form user is a synonym for user@%. Details: http://www.mysql.com/doc/en/GRANT.html Regards, -- Stefan Hinz [EMAIL PROTECTED] Geschäftsführer / CEO iConnect GmbH http://iConnect.de Heesestr. 6, 12169 Berlin (Germany) Tel: +49 30 7970948-0 Fax: +49 30 7970948-3 - Original Message - From: Neil Aggarwal [EMAIL PROTECTED] To: Mysql list [EMAIL PROTECTED] Sent: Wednesday, January 15, 2003 6:00 PM Subject: Password problem Hello: As the root user, I created a new database and user account: CREATE DATABASE newsletter; GRANT ALL PRIVILEGES ON newsletter.* TO newsletter IDENTIFIED BY 'testPass'; FLUSH PRIVILEGES; I then tried to access the databse via the command-line client: /usr/local/mysql/bin/mysql -u newsletter -ptestPass newsletter And I get this error: ERROR 1045: Access denied for user: 'newsletter@localhost' (Using password: YES) I checked that mysql has it set-up correctly in the user and db tables by logging in as the root account. select * from user give me this line: | % | newsletter | 61fa73f50740c213 | N | N | N | N | N | N | N | N | N| N | N | N | N | N select * from db gives me this line: | % | newsletter | newsletter | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Any ideas? Thanks, Neil. -- Neil Aggarwal JAMM Consulting, Inc.(972) 612-6056, http://www.JAMMConsulting.com Custom Internet DevelopmentWebsites, Ecommerce, Java, databases - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password problem
GRANT ALL PRIVILEGES ON newsletter.* TO 'newsletter'@'localhost' IDENTIFIED BY 'testPass'; Neil Aggarwal wrote: Hello: As the root user, I created a new database and user account: CREATE DATABASE newsletter; GRANT ALL PRIVILEGES ON newsletter.* TO newsletter IDENTIFIED BY 'testPass'; FLUSH PRIVILEGES; I then tried to access the databse via the command-line client: /usr/local/mysql/bin/mysql -u newsletter -ptestPass newsletter And I get this error: ERROR 1045: Access denied for user: 'newsletter@localhost' (Using password: YES) I checked that mysql has it set-up correctly in the user and db tables by logging in as the root account. select * from user give me this line: | % | newsletter | 61fa73f50740c213 | N | N | N | N | N | N | N | N | N| N | N | N | N | N select * from db gives me this line: | % | newsletter | newsletter | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Any ideas? Thanks, Neil. -- Neil Aggarwal JAMM Consulting, Inc.(972) 612-6056, http://www.JAMMConsulting.com Custom Internet DevelopmentWebsites, Ecommerce, Java, databases - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password protection
On Mon, Dec 23, 2002 at 03:53:14PM -0700, Mark Stringham wrote: I know the MySQL password( ) function is irreversible. I have also been told that storing passwords in plain text is a bad idea. Can a get a few suggestions of good ways to store passwords in the db? Using MD5() is one of my favorite alternatives. Jeremy -- Jeremy D. Zawodny | Perl, Web, MySQL, Linux Magazine, Yahoo! [EMAIL PROTECTED] | http://jeremy.zawodny.com/ MySQL 3.23.51: up 8 days, processed 319,082,251 queries (422/sec. avg) - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password protection
Jeremy Zawodny wrote: On Mon, Dec 23, 2002 at 03:53:14PM -0700, Mark Stringham wrote: I know the MySQL password( ) function is irreversible. I have also been told that storing passwords in plain text is a bad idea. Can a get a few suggestions of good ways to store passwords in the db? Using MD5() is one of my favorite alternatives. Jeremy The way many systems handle passwords, is that you store the password as a one-way encryption (MD5 or crypt() for example), then when you need to test if that is the right password, you encrypt the password they give you, then see if the two encrypted forms match. That system makes breaking passwords much harder, since you have to brute force, not just have the reverse encryption key and then have access to all of the passwords. -- Kevin - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password function not working with latest 4.1 tree
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, 19 Dec 2002 [EMAIL PROTECTED] wrote: Description: with the latest 4.1 tree (from today) the PASSWORD() function returns random alpha-numeric text /[a-f0-9]/ 45 characters in length (which is too long for a password string). The string always starts with a * (asterisk). example:*95144feaa0f433f3f62c29382697a1e631b283f860f0 How-To-Repeat: Using latest BK 4.1 tree, SELECT PASSWORD('something'); Yes, that's intentional - we have changed this in 4.1, but it's not documented in the manual yet. A quote from the developer working on that code: [SNIP] I've send rather large piece of documentation about it to docs but I belive they still did not get into the manual. A lot of changes about MySQL authentication changes are need to be done so I can understand why it is not that quick. Also it is not really random, but has some randomity in it. It is whole idea! Now password(1) returns different strings all the time - so if you have many users you can't search for matching hashes for most simple passwords as you previously could. password() function is designed especially to provide password hash to be used MySQL and it still does so. Some people used it for password encryption instead of MD5() or SHA1(). These people are wrong of course :) But not being so cruel we left OLD_PASSWORD() function for them which generates old password hash. Also --old-passwords startup option can help if you would like to run in 4.0 compatible password generation mode. [SNIP] Hope that helps! Bye, LenZ - -- For technical support contracts, visit https://order.mysql.com/?ref=mlgr __ ___ ___ __ / |/ /_ __/ __/ __ \/ / Mr. Lenz Grimmer [EMAIL PROTECTED] / /|_/ / // /\ \/ /_/ / /__ MySQL AB, Production Engineer /_/ /_/\_, /___/\___\_\___/ Hamburg, Germany ___/ www.mysql.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.0 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQE+Ab1fSVDhKrJykfIRAi+DAJ9CC9qQAGXS3L7QP5lVPcHwWUO9CgCeIdlX pouFFLTHUvDidhcLYTpfDXk= =W3v0 -END PGP SIGNATURE- - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password function not working with latest 4.1 tree
Yes, that's intentional - we have changed this in 4.1, but it's not documented in the manual yet. A quote from the developer working on that code: So, the PASSWORD() function is now not to be used for passwords? The problem is that I have built at least a few applications that use PASSWORD() as the authentication mechanism as it produces a one-way hash that is the same every time - the same as what MD5() does. No one was told that this wasn't the desired usage for PASSWORD(). Now the problem that I face is that I can't convert my old passwords to MD5 hashes because the original PASSWORD() function was irreversible. Therefore I am left with no choice but to use a deprecated function... which I really don't want to do... What do you suggest? Regards, Matt Parlane Modus Consulting sql,query - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: Password protection
Dear Bjoern, I have completed a new setup on WinXP, with Mysqld-nt as a service, and assigned a new password to root. However I am able to connect as root without password, alter and even drop tables and complete databases with the tool MySQLFront !!! After setting up MySQL under Windows, the grant tables have automatically been set up with some basic users. One of them is called root, a user who can connect from the local box without entering a password. This is done so new users can just play around a little without having to worry about what a privilege system is etc. All user account information in MySQL is stored in a database called mysql. User accounts (with user privileges to the MySQL server) are stored in mysql.user, and if access is limited to certain databases, account information is also stored in mysql.db. You can find detailed information on the MySQL privilege system at http://www.mysql.com/documentation/mysql/bychapter/manual_MySQL_Database_Adm inistration.html#User_Account_Management. You can GRANT and REVOKE privileges like in other SQL DBMS. In MySQL, you can also INSERT, UPDATE and DELETE users through the tables in the mysql database. If you manipulate the mysql tables directly (instead of GRANTing and REVOKEing), you will have to issue FLUSH PRIVILEGES to tell the server to reload the grant tables (and thus, make the access privileges take effect). To make your MySQL server secure, you can do: DELETE FROM mysql.user; DELETE FROM mysql.db; -- This will erase all current users GRANT ALL ON *.* TO 'superuser'@'localhost' IDENTIFIED BY 'secret' WITH GRANT OPTION; FLUSH PRIVILEGES; -- make the changes of the above DELETE take effect Note that 'superuser' can only connect from localhost. If you need other users, you can create new accounts as 'superuser' with GRANT statements like in other SQL DBMS. HTH! -- Stefan Hinz [EMAIL PROTECTED] CEO / Geschäftsleitung iConnect GmbH http://iConnect.de Heesestr. 6, 12169 Berlin (Germany) Telefon: +49 30 7970948-0 Fax: +49 30 7970948-3 - Original Message - From: Bjørn Stave [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, December 08, 2002 11:13 PM Subject: Password protection Hi MySQL I am a new user of your product, and so far everything looks great, except for password protection... I have completed a new setup on WinXP, with Mysqld-nt as a service, and assigned a new password to root. However I am able to connect as root without password, alter and even drop tables and complete databases with the tool MySQLFront !!! If I try to connect using MySQLadmin at the command prompt without password I am rejected as expected. Did I miss out on something important, or is there a commonly known backdoor to the MySQLdb A litle extra info Server: WinXP, MySQL ver. 3.23.49nt (commandprompt rejects acces without pw) Client: WinXP, MySQLFRONT ver. 2.2 from MySQLfront.de (acces without pw granted) Purpose of use: development of a servicemanagement/CRM application as ISV Being a bit worried to continue developing, I look forward to hering from You. Kind regards Bjørn D. W. Stave Expressive.dk - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password MYSQL
Hi! First, try connecting from the command-line mysql client. mysql -u root -p -h ser.ver.ip.addr Then enter your password (if you don't have a root password you can dismiss -p) Also, if that works, try resetting cookies from your browser, as phpMyAdmin relies on cookie authentication. Iikka On Tue, 12 Nov 2002, John Chang wrote: I just changed the root password for MYSQL from the default and now it gives me the error Access is denied when I try to connect using phpMyadmin. It doesn't even ask for a password. How can I login in? Thank you. - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php ** * Iikka Meriläinen * * E-mail: [EMAIL PROTECTED] * * Vaala, Finland * ** - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password MYSQL
I tried the first suggestion and it signed in fine. After emptying the cookies in Netscape and then quitting. I tried to connect to http://localhost/phpMyAdmin-2.3.2/index.php and it never asked for a password just gave me: Error MySQL said: Access denied for user: 'root@localhost' (Using password: NO) How do I pass the password? At 11:03 PM 11/12/2002 +0200, Iikka Meriläinen wrote: Hi! First, try connecting from the command-line mysql client. mysql -u root -p -h ser.ver.ip.addr Then enter your password (if you don't have a root password you can dismiss -p) Also, if that works, try resetting cookies from your browser, as phpMyAdmin relies on cookie authentication. Iikka On Tue, 12 Nov 2002, John Chang wrote: I just changed the root password for MYSQL from the default and now it gives me the error Access is denied when I try to connect using phpMyadmin. It doesn't even ask for a password. How can I login in? Thank you. - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php ** * Iikka Meriläinen * * E-mail: [EMAIL PROTECTED] * * Vaala, Finland * ** - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
RE: password
Ed, I feel that your response to this problem is not in the spirit of the open source world (more like the RTFM response that you would get from a support desk). We should be encouraging new users with replies like: Yes - this is quite a common problem with new installs - you could try x, y or z. Alternatively there is a good explanation of how to do this in mysql's online documentation at www.mysql.com/doc/somedocsorother/ - hope this helps Remember that it's very easy to look stuff up in the manual if you know what keywords to use, but very hard if you don't know the mysql lingo! Cheers, Andrew --Ed Carp said Look in the manual FIRST before porting, please - this is a very common problem and one that's covered in the manual. sql, query - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
RE: password
mysqladmin: connect to server at 'localhost' failed error: 'Access denied for user: 'root@localhost' (Using password: NO)' Is there an way to get out of my way? Uninstalling mysql-server and installing again didn't do the trick Look in the manual FIRST before porting, please - this is a very common problem and one that's covered in the manual. sql, query - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password
From the Manual: How to reset a forgotten root password. http://www.mysql.com/doc/en/Resetting_permissions.html Also, don't forget -p when connecting as root. Quoting Marc Dirix [EMAIL PROTECTED]: Hi there Problem: I've got two debian linux pc's One is my server on which I would like to install te mysql server, one is my workstation. First trying to install the mysql server on my server I seem to have done something wrong. With installation I had no problems (standard .deb installtion) but somehowe I've managed to change the root password for the server into something I can't remember so now inserting for example marc@angus:~$ mysqladmin -u root create test I get this message mysqladmin: connect to server at 'localhost' failed error: 'Access denied for user: 'root@localhost' (Using password: NO)' doing this as normal user like this mysqladmin -u marc create test everything works just fine. I've also installed the package on my other pc, my workstation, and managed to update the root password succesfully thus inserting marc@malcolm:~$ mysqladmin -u root -p create test Enter password: works fine So cummulative probably I've changed the root password, (even with the -p option I can't figure it out) Is there an way to get out of my way? Uninstalling mysql-server and installing again didn't do the trick Thanks Marc Dirix - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password
You answer a simple question that is in the table of contents 200 times in a week, and see how short your replies get. Andrew Braithwaite wrote: Ed, I feel that your response to this problem is not in the spirit of the open source world (more like the RTFM response that you would get from a support desk). We should be encouraging new users with replies like: Yes - this is quite a common problem with new installs - you could try x, y or z. Alternatively there is a good explanation of how to do this in mysql's online documentation at www.mysql.com/doc/somedocsorother/ - hope this helps Remember that it's very easy to look stuff up in the manual if you know what keywords to use, but very hard if you don't know the mysql lingo! Cheers, Andrew --Ed Carp said Look in the manual FIRST before porting, please - this is a very common problem and one that's covered in the manual. sql, query - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password / last record
Hi Arjen If that is the case, suppose if I have forgotten the string password of a particular user But I want to grant certain privileges to him, is GRANT DELETE ,. ON Database Name TO User Name IDENTIFIED BY 'Encrypted Password' valid ? regards - Original Message - From: "Arjen Lentz" [EMAIL PROTECTED] To: "kayamboo" [EMAIL PROTECTED] Cc: "list mysql" [EMAIL PROTECTED] Sent: Thursday, October 10, 2002 1:08 PM Subject: Re: password / last record Hi, On Thu, 2002-10-10 at 10:57, kayamboo wrote: 1. Is there anyway to know the string value of the password using the encrypted value , from the mysql.user table ? No. It's scrambled with a one-way (lossy) algorithm. 2. How can I know the most recently entered record, that does not have an AUTOINCREMENT column ? You can't. Rows are by definition un-ordered in SQL databases, because storage is an internal matter for the server, it can do it any way it sees fit (it'll depend on the format, and other considerations like filling gaps of deleted rows, etc). The only logical ordering is one you put in (with AUTO_INCREMENT or timestamps or whatever). Actually you would only see that order if you use SELECT ... ORDER BY ... Otherwise, output is also unordered! (the fact that it may appear ordered while not using ORDER BY is purely coincidence: delete a row and insert a new one and you'll definitely find more disorder ;-) Regards, Arjen. -- MySQL Training in Auckland and Sydney, http://www.mysql.com/training/ Purchase Training, Support, Licenses @ https://order.mysql.com/?marl __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Mr. Arjen G. Lentz [EMAIL PROTECTED] / /|_/ / // /\ \/ /_/ / /__ MySQL AB, Technical Writer, Trainer /_/ /_/\_, /___/\___\_\___/ Brisbane, QLD Australia ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password / last record
Hi, On Thu, 2002-10-10 at 10:57, kayamboo wrote: 1. Is there anyway to know the string value of the password using the encrypted value , from the mysql.user table ? No. It's scrambled with a one-way (lossy) algorithm. 2. How can I know the most recently entered record, that does not have an AUTOINCREMENT column ? You can't. Rows are by definition un-ordered in SQL databases, because storage is an internal matter for the server, it can do it any way it sees fit (it'll depend on the format, and other considerations like filling gaps of deleted rows, etc). The only logical ordering is one you put in (with AUTO_INCREMENT or timestamps or whatever). Actually you would only see that order if you use SELECT ... ORDER BY ... Otherwise, output is also unordered! (the fact that it may appear ordered while not using ORDER BY is purely coincidence: delete a row and insert a new one and you'll definitely find more disorder ;-) Regards, Arjen. -- MySQL Training in Auckland and Sydney, http://www.mysql.com/training/ Purchase Training, Support, Licenses @ https://order.mysql.com/?marl __ ___ ___ __ / |/ /_ __/ __/ __ \/ /Mr. Arjen G. Lentz [EMAIL PROTECTED] / /|_/ / // /\ \/ /_/ / /__ MySQL AB, Technical Writer, Trainer /_/ /_/\_, /___/\___\_\___/ Brisbane, QLD Australia ___/ www.mysql.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: password stuff
Pada Mon, 22 Jul 2002 12:00:14 -0700 Cindy [EMAIL PROTECTED] menulis : b) BUT if previously set, this does not work. If you don't remember the password, then you need to stop the mysql server (if applicable), and (re)start it using safe_mysqld --skip-grant-tables [and then presumably change the password, stop that insecure server restart normally with --user] if there is no important user login information exists, you can delete the directory of database mysql and re-do the mysql_install_db and you can mysqladmin -uroot password newpassword ;-) -- Write clearly - don't be too clever. - The Elements of Programming Style (Kernighan Plaugher) MySQL 3.23.51 : up 32 days, Queries : 354.217 per second (avg). -- Dicky Wahyu Purnomo - System Administrator PT FIRSTWAP : Jl Kapt. Tendean No. 34 - Jakarta Selatan (12790) Phone : +62 21 79199577 - Web : http://1rstwap.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php