aboutsummaryrefslogtreecommitdiff
path: root/databases/passwords/mysql/README.org
diff options
context:
space:
mode:
authorChristian Cleberg <hello@cleberg.net>2025-04-25 17:37:39 -0500
committerGitHub <noreply@github.com>2025-04-25 22:37:39 +0000
commit86db2585623515fe38347811ec4bf46565d2c44b (patch)
treea0d9860ea8ffeea4ff08939ffdb41c6c8158dd1c /databases/passwords/mysql/README.org
parent7ba7b11f85dcca361ba5497d23b33e53f2525b0c (diff)
downloadaudit-tools-86db2585623515fe38347811ec4bf46565d2c44b.tar.gz
audit-tools-86db2585623515fe38347811ec4bf46565d2c44b.tar.bz2
audit-tools-86db2585623515fe38347811ec4bf46565d2c44b.zip
MySQL & Postgres Enhancements (#5)
* remove mysql login script and add password script * move excess mysql password query to new script * add db admin folders * add postgres * add mongo admins script * Commit from GitHub Actions (Ruff) * update tests for mysql and postgres * update tests for mysql and postgres --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
Diffstat (limited to 'databases/passwords/mysql/README.org')
-rw-r--r--databases/passwords/mysql/README.org76
1 files changed, 76 insertions, 0 deletions
diff --git a/databases/passwords/mysql/README.org b/databases/passwords/mysql/README.org
new file mode 100644
index 0000000..b843bd1
--- /dev/null
+++ b/databases/passwords/mysql/README.org
@@ -0,0 +1,76 @@
+#+title: MySQL Passwords
+
+* =mysql_admins.sql=
+
+#+begin_src sql
+SELECT user, host, plugin FROM mysql.user;
+#+end_src
+
+#+begin_src
+mysql> SELECT user, host, plugin FROM mysql.user;
++------------------+-----------+-----------------------+
+| user | host | plugin |
++------------------+-----------+-----------------------+
+| cmc | % | caching_sha2_password |
+| mysql.infoschema | localhost | caching_sha2_password |
+| mysql.session | localhost | caching_sha2_password |
+| mysql.sys | localhost | caching_sha2_password |
+| root | localhost | caching_sha2_password |
++------------------+-----------+-----------------------+
+5 rows in set (0.001 sec)
+#+end_src
+
+#+begin_src sql
+SHOW GLOBAL VARIABLES LIKE 'validate_password%';
+SHOW VARIABLES LIKE 'validate_password%';
+#+end_src
+
+#+begin_src
+mysql> SHOW GLOBAL VARIABLES LIKE 'validate_password%';
++-------------------------------------------------+--------+
+| Variable_name | Value |
++-------------------------------------------------+--------+
+| validate_password.changed_characters_percentage | 0 |
+| validate_password.check_user_name | ON |
+| validate_password.dictionary_file | |
+| validate_password.length | 8 |
+| validate_password.mixed_case_count | 1 |
+| validate_password.number_count | 1 |
+| validate_password.policy | MEDIUM |
+| validate_password.special_char_count | 1 |
++-------------------------------------------------+--------+
+8 rows in set (0.004 sec)
+
+mysql> SHOW VARIABLES LIKE 'validate_password%';
++-------------------------------------------------+--------+
+| Variable_name | Value |
++-------------------------------------------------+--------+
+| validate_password.changed_characters_percentage | 0 |
+| validate_password.check_user_name | ON |
+| validate_password.dictionary_file | |
+| validate_password.length | 8 |
+| validate_password.mixed_case_count | 1 |
+| validate_password.number_count | 1 |
+| validate_password.policy | MEDIUM |
+| validate_password.special_char_count | 1 |
++-------------------------------------------------+--------+
+8 rows in set (0.004 sec)
+#+end_src
+
+#+begin_src sql
+SELECT * FROM mysql.user
+#+end_src
+
+#+begin_src
+MySQL [(none)]> SELECT * FROM mysql.user;
++-----------+------------------+-------------+-------------+-------------+-------------+-------------+-----------+-------------+---------------+--------------+-----------+------------+-----------------+------------+------------+--------------+------------+-----------------------+------------------+--------------+-----------------+------------------+------------------+----------------+---------------------+--------------------+------------------+------------+--------------+------------------------+----------+------------+-------------+--------------+---------------+-------------+-----------------+----------------------+-----------------------+------------------------------------------------------------------------+------------------+-----------------------+-------------------+----------------+------------------+----------------+------------------------+---------------------+--------------------------+-----------------+
+| Host | User | Select_priv | Insert_priv | Update_priv | Delete_priv | Create_priv | Drop_priv | Reload_priv | Shutdown_priv | Process_priv | File_priv | Grant_priv | References_priv | Index_priv | Alter_priv | Show_db_priv | Super_priv | Create_tmp_table_priv | Lock_tables_priv | Execute_priv | Repl_slave_priv | Repl_client_priv | Create_view_priv | Show_view_priv | Create_routine_priv | Alter_routine_priv | Create_user_priv | Event_priv | Trigger_priv | Create_tablespace_priv | ssl_type | ssl_cipher | x509_issuer | x509_subject | max_questions | max_updates | max_connections | max_user_connections | plugin | authentication_string | password_expired | password_last_changed | password_lifetime | account_locked | Create_role_priv | Drop_role_priv | Password_reuse_history | Password_reuse_time | Password_require_current | User_attributes |
++-----------+------------------+-------------+-------------+-------------+-------------+-------------+-----------+-------------+---------------+--------------+-----------+------------+-----------------+------------+------------+--------------+------------+-----------------------+------------------+--------------+-----------------+------------------+------------------+----------------+---------------------+--------------------+------------------+------------+--------------+------------------------+----------+------------+-------------+--------------+---------------+-------------+-----------------+----------------------+-----------------------+------------------------------------------------------------------------+------------------+-----------------------+-------------------+----------------+------------------+----------------+------------------------+---------------------+--------------------------+-----------------+
+| % | cmc | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | | | | | 0 | 0 | 0 | 0 | caching_sha2_password | | N | 2025-04-25 16:28:52 | NULL | N | N | N | NULL | NULL | NULL | NULL |
+| localhost | mysql.infoschema | Y | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | | | | | 0 | 0 | 0 | 0 | caching_sha2_password | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | N | 2025-04-25 15:51:53 | NULL | Y | N | N | NULL | NULL | NULL | NULL |
+| localhost | mysql.session | N | N | N | N | N | N | N | Y | N | N | N | N | N | N | N | Y | N | N | N | N | N | N | N | N | N | N | N | N | N | | | | | 0 | 0 | 0 | 0 | caching_sha2_password | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | N | 2025-04-25 15:51:53 | NULL | Y | N | N | NULL | NULL | NULL | NULL |
+| localhost | mysql.sys | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | N | | | | | 0 | 0 | 0 | 0 | caching_sha2_password | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | N | 2025-04-25 15:51:53 | NULL | Y | N | N | NULL | NULL | NULL | NULL |
+| localhost | root | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | | | | | 0 | 0 | 0 | 0 | caching_sha2_password | | N | 2025-04-25 15:51:53 | NULL | N | Y | Y | NULL | NULL | NULL | NULL |
++-----------+------------------+-------------+-------------+-------------+-------------+-------------+-----------+-------------+---------------+--------------+-----------+------------+-----------------+------------+------------+--------------+------------+-----------------------+------------------+--------------+-----------------+------------------+------------------+----------------+---------------------+--------------------+------------------+------------+--------------+------------------------+----------+------------+-------------+--------------+---------------+-------------+-----------------+----------------------+-----------------------+------------------------------------------------------------------------+------------------+-----------------------+-------------------+----------------+------------------+----------------+------------------------+---------------------+--------------------------+-----------------+
+5 rows in set (0.005 sec)
+#+end_src
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2025-09-15 06:30:15 +0000