SSL/TLS and RSA Improvements for OpenSSL Linked MySQL 5.7 Binaries
What? MySQL 5.7 server binaries compiled with the OpenSSL library now make it easy to set up SSL/TLS and RSA artifacts, and to enable them within MySQL. Two new read-only global options have been...
View ArticleIdentifying Insecure Connections
A key theme of the MySQL Server 5.7 release is much improved security. Earlier releases of MySQL 5.7 have introduced features supporting this initiative including automatic generation and detection of...
View ArticleProtecting MySQL Passwords With the sha256_password Plugin
Over the years, MySQL has used three different mechanisms for securing passwords both for storage and for transmission across networks. This blog post aims to provide a brief history of the various...
View ArticleSimplified SSL/TLS Setup for MySQL Community
Transport Layer Security (TLS, also often referred to as SSL) is an important component of a secure MySQL deployment, but the complexities of properly generating the necessary key material and...
View ArticleThe connection_control plugin : Keeping brute force attack in check
To quote book of all knowledge:In cryptography, a brute-force attack consists of an attacker trying many passwords or passphrases with the hope of eventually guessing correctly. The attacker...
View ArticleA Tale of Two Password Authentication Plugins…
A long long time ago (in a galaxy far away… cue the music!) MySQL added support for an authentication plugin which is now known as mysql_native_password. The mysql_native_password plugin uses SHA1 hash...
View Article