I discovered today that CentOS 7 has replaced MySQL with MariaDB. Which is fine, it’s seems really similar. And I was already aware that it was written by the original team that wrote mysql.
It’s cool that the mysql command still gets you in!
This is the version I have:
[root@web1:~] #mysql –version mysql Ver 15.1 Distrib 5.5.37-MariaDB, for Linux (x86_64) using readline
But for some reason all I have to do is type the word ‘mysql’ to get me into the database.
That’s ok for initial setup I guess. But once I was in a did away with all the accounts that either had blank set for the username, and updated all the accounts to use passwords.
MariaDB [mysql]> select User,’@’,Host,Password from user;
| User | @ | Host | Password |
| root | @ | localhost | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |
| root | @ | web1 | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |
| root | @ | 127.0.0.1 | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |
| admin | @ | localhost | *8328225AE4A663FAKEFAKEFAKEFAKEFAKE93D61 |
4 rows in set (0.00 sec)
I also did a search from root to find any my.cnf files and didn’t find any that has user accounts in them.
Also I find that for the root accounts I can’t seem to login even if I set the password in the database without encryption and copy/paste the password into the prompt.
However the non-root account (admin) does let you in with the password.
So I’m wondering how to secure mariadb so that it doesnt’ let you in without typing in a username and password and also why it doesn’t let you log in as ‘root’? Is the root account disallowed from logging in by default?