Hello,

I discovered today that CentOS 7 has replaced MySQL with MariaDB. Which is fine, it’s seems really similar. And I was already aware that it was written by the original team that wrote mysql.

It’s cool that the mysql command still gets you in!

This is the version I have:

[root@web1:~] #mysql –version mysql Ver 15.1 Distrib 5.5.37-MariaDB, for Linux (x86_64) using readline
5.1

But for some reason all I have to do is type the word ‘mysql’ to get me into the database.

That’s ok for initial setup I guess. But once I was in a did away with all the accounts that either had blank set for the username, and updated all the accounts to use passwords.

MariaDB [mysql]> select User,’@’,Host,Password from user;
+——-+—+———–+——————————————-+

| User | @ | Host | Password |

+——-+—+———–+——————————————-+

| root | @ | localhost | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |

| root | @ | web1 | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |

| root | @ | 127.0.0.1 | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |

| admin | @ | localhost | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |

+——-+—+———–+——————————————-+

4 rows in set (0.00 sec)

I also did a search from root to find any my.cnf files and didn’t find any that has user accounts in them.

Also I find that for the root accounts I can’t seem to login even if I set the password in the database without encryption and copy/paste the password into the prompt.

However the non-root account (admin) does let you in with the password.

So I’m wondering how to secure mariadb so that it doesnt’ let you in without typing in a username and password and also why it doesn’t let you log in as ‘root’? Is the root account disallowed from logging in by default?

Thanks Tim