{"id":4172,"date":"2014-11-30T11:24:44","date_gmt":"2014-11-30T10:24:44","guid":{"rendered":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/"},"modified":"2014-11-30T11:24:44","modified_gmt":"2014-11-30T10:24:44","slug":"security-improvement-in-mysql-57","status":"publish","type":"post","link":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/","title":{"rendered":"Security improvements in MySQL 5.7"},"content":{"rendered":"<p>If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: <a href=\"http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html\">http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html<\/a><\/p>\n<p>There are three main improvements that are shortly described in this blog:<\/p>\n<p>1. Nonempty plugin column<br \/>\n2. Password lifetime policy<br \/>\n3. mysql_install_db secured<\/p>\n<h3>Nonempty plugin column<\/h3>\n<p>As of MySQL 5.7.2, the server requires account rows in the mysql.user table to have a nonempty plugin column value and disables accounts with an empty value. The following error will occor when trying to connect with user having empty plugin colum:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">2014-11-30T10:41:04.943384Z 2 [Note] Access denied for user <a href=\"mailto:'sbtest'@'localhost'\">'sbtest'@'localhost'<\/a> (using password: YES)ERROR 1045 (28000): Access denied for user <a href=\"mailto:'sbtest'@'localhost'\">'sbtest'@'localhost'<\/a> (using password: YES)<\/pre>\n<p>If the user is connected when you update the plugin column, MySQL will behave as described below:<\/p>\n<h4>1. The user connect to the database:<\/h4>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql -u sbtest -p --socket=\/u00\/app\/mysql\/admin\/mysqld5\/socket\/mysqld5.sock \nEnter password: \nWelcome to the MySQL monitor.\u00a0 Commands end with ; or g.\nYour MySQL connection id is 9\nServer version: 5.7.4-m14 MySQL Community Server (GPL)Copyright (c) 2000, 2014, Oracle and\/or its affiliates. All rights reserved.Oracle is a registered trademark of Oracle Corporation and\/or its\naffiliates. Other names may be trademarks of their respective\nowners.Type 'help;' or 'h' for help. Type 'c' to clear the current input statement.\nmysql&gt;<\/pre>\n<p>&nbsp;<\/p>\n<h4 style=\"margin-bottom: 0in;line-height: 100%\">2. Update column with root user:<\/h4>\n<p><code>mysql&gt; update mysql.user set plugin='' where user='sbtest';<br \/>\nQuery OK, 1 row affected (0.00 sec)<br \/>\nRows matched: 1\u00a0 Changed: 1\u00a0 Warnings: 0<\/code><\/p>\n<h4>3. With the root user you flush the privileges:<\/h4>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; flush privileges;\nQuery OK, 0 rows affected (0.00 sec)<\/pre>\n<h4>4. The following message will appear in the sbtest session:<\/h4>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">2014-11-30T22:08:16.652477Z 8 [Warning] User entry <a href=\"mailto:'sbtest'@'localhost' has\">'sbtest'@'localhost' has<\/a> an empty plugin value. The user will be ignored and no one can login with this user anymore.<\/pre>\n<p>Password Lifetime policy<\/p>\n<p>Since mysql 5.7.4 MySQL enables database administrators to expire account passwords manually and to establish a policy for automatic password expiration. How does it work ?<\/p>\n<p>Two new columns have been added to MySQL:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">\u00a0\n| password_last_changed | timestamp\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | YES | | NULL |\n| password_lifetime\u00a0\u00a0\u00a0\u00a0 | smallint(5) unsigned | YES | | NULL |<\/pre>\n<p>&nbsp;<\/p>\n<p>These two columns allow to see when password has been changed and to set a password lifetime.<\/p>\n<p>You can establish a global password policy by setting the variable default_password_lifetime in the option file. By default this variable is set to 360. It means that all users will have to change their password once per year. A value of 0 disables automatic password expiration.<\/p>\n<p>As stated in the documentation, the global password expliration policy can be overridden as desired for individual accounts using the ALTER USER statement.<\/p>\n<p>Example:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; ALTER USER <a href=\"mailto:'sbtest'@'localhost' PASSWORD\">'sbtest'@'localhost' PASSWORD<\/a> EXPIRE INTERVAL 90 DAY;\nQuery OK, 0 rows affected (0.00 sec)<\/pre>\n<p>A client session operates in restricted mode if the account password has been expired. In restricted mode, operations performed in the session result in an error until the user issues a <a href=\"http:\/\/dev.mysql.com\/doc\/refman\/5.6\/en\/set-password.html\">SET PASSWORD<\/a> statement to establish a new account password:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; alter user <a href=\"mailto:'sbtest'@'localhost' password\">'sbtest'@'localhost' password<\/a> expire interval 1 day;\n[mysqld5] mysql -u sbtest -p \nmysql&gt; show databases;\nERROR 1820 (HY000): You must SET PASSWORD before executing this statement\nmysql&gt; set password=password('sbtest');\nQuery OK, 0 rows affected (0.01 sec)\nmysql&gt; show databases;\n+--------------------+\n| Database\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+--------------------+\n| information_schema |\n| sysbench\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+--------------------+\n2 rows in set (0.00 sec)<\/pre>\n<p>To remove the password expiration policy simple use &#8220;expire never&#8221; as presented in the following example:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt;alter user <a href=\"mailto:'sbtest'@'localhost' password\">'sbtest'@'localhost' password<\/a> expire never;<\/pre>\n<p>&nbsp;<\/p>\n<h3>mysql_install_db secured<\/h3>\n<p>MySQL deployments installed using <a href=\"http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-install-db.html\">mysql_install_db<\/a> now are secure by default. The following changes have been implemented as the default deployment characteristics:<\/p>\n<p>The installation process creates only a single root account and not anymore anonymous-user accounts.<\/p>\n<p>Example on MySQL 5.7.4:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; select user,password, host from mysql.user;\n+-------------+-------------------------------------------+-----------+\n| user\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | password\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | host\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+-------------+-------------------------------------------+-----------+\n| root\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | *7D2ABFF56C15D67445082FBB4ACD2DCD26C0ED57 | localhost |\n+-------------+-------------------------------------------+-----------+\n1 rows in set (0.00 sec)<\/pre>\n<p>Example on mysql 5.6.20:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; select user,password, host from mysql.user;\n+-------------+-------------------------------------------+----------------+\n| user\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | password\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | host\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+-------------+-------------------------------------------+----------------+\n| root\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | *7D2ABFF56C15D67445082FBB4ACD2DCD26C0ED57 | localhost\u00a0\u00a0\u00a0\u00a0\u00a0 |\n| root\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | thinkpad-t540p |\n| root\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | 127.0.0.1\u00a0\u00a0\u00a0\u00a0\u00a0 |\n| root\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | ::1\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n|\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | localhost\u00a0\u00a0\u00a0\u00a0\u00a0 |\n|\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 | thinkpad-t540p |\n+-------------+-------------------------------------------+----------------+\n6 rows in set (0.01 sec)<\/pre>\n<p>After the installation you can also note that there is no &#8220;test&#8221; database anymore.<\/p>\n<p>Example on MySQL 5.7.4:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; show databases;\n+--------------------+\n| Database\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+--------------------+\n| information_schema |\n| mysql\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n| performance_schema |\n+--------------------+\n3 rows in set (0.00 sec)<\/pre>\n<p>Example on MySQL 5.6.20:<\/p>\n<pre class=\"brush: actionscript3; gutter: true; first-line: 1\">mysql&gt; show databases;\n+--------------------+\n| Database\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+--------------------+\n| information_schema |\n| mysql\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n| performance_schema |\n| test\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 |\n+--------------------+\n4 rows in set (0.00 sec)<\/pre>\n<h3>Conclusion<\/h3>\n<p>Oracle did some significative security improvements on MySQL 5.7 version. This improvements will help database administrators to deploy MySQL with a better security level than with previous versions. Some improvements have also been done on the mysql_secure_installation script. The list of improvement and additional features can be seen on the following URL: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-secure-installation.html<\/p>\n","protected":false},"excerpt":{"rendered":"<p>If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html There are three main improvements that are shortly described in this blog: 1. Nonempty plugin column [&hellip;]<\/p>\n","protected":false},"author":10,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[198],"tags":[144,253,25],"type_dbi":[],"class_list":["post-4172","post","type-post","status-publish","format-standard","hentry","category-database-management","tag-mysql","tag-mysql-administrator","tag-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.2 (Yoast SEO v27.4) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Security improvements in MySQL 5.7 - dbi Blog<\/title>\n<meta name=\"description\" content=\"If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security improvements in MySQL 5.7\" \/>\n<meta property=\"og:description\" content=\"If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/\" \/>\n<meta property=\"og:site_name\" content=\"dbi Blog\" \/>\n<meta property=\"article:published_time\" content=\"2014-11-30T10:24:44+00:00\" \/>\n<meta name=\"author\" content=\"Gr\u00e9gory Steulet\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Gr\u00e9gory Steulet\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/\"},\"author\":{\"name\":\"Gr\u00e9gory Steulet\",\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/#\\\/schema\\\/person\\\/7609faada8e4d63e04a28ae29e227098\"},\"headline\":\"Security improvements in MySQL 5.7\",\"datePublished\":\"2014-11-30T10:24:44+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/\"},\"wordCount\":473,\"commentCount\":0,\"keywords\":[\"MySQL\",\"MySQL administrator\",\"Security\"],\"articleSection\":[\"Database management\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/\",\"url\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/\",\"name\":\"Security improvements in MySQL 5.7 - dbi Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/#website\"},\"datePublished\":\"2014-11-30T10:24:44+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/#\\\/schema\\\/person\\\/7609faada8e4d63e04a28ae29e227098\"},\"description\":\"If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\\\/\\\/dev.mysql.com\\\/doc\\\/refman\\\/5.7\\\/en\\\/mysql-nutshell.html\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/security-improvement-in-mysql-57\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security improvements in MySQL 5.7\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/\",\"name\":\"dbi Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/#\\\/schema\\\/person\\\/7609faada8e4d63e04a28ae29e227098\",\"name\":\"Gr\u00e9gory Steulet\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e1531483285469fe17ea7a769ce5d8a8a01847185e4245d9c4d22c575c7c6d3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e1531483285469fe17ea7a769ce5d8a8a01847185e4245d9c4d22c575c7c6d3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e1531483285469fe17ea7a769ce5d8a8a01847185e4245d9c4d22c575c7c6d3e?s=96&d=mm&r=g\",\"caption\":\"Gr\u00e9gory Steulet\"},\"description\":\"Gr\u00e9gory Steulet has more than ten years of experience in database and infrastructure management, engineering, and optimization. He is specialized in Oracle technologies and high availability solutions (Oracle DataGuard, Data Replication Block Device). His expertise also includes Avaloq banking applications, as well as the open source field (MySQL, Unix\\\/Linux, etc.). Gr\u00e9gory Steulet is \\\"Oracle Certified Professional 10g\\\", \\\"MySQL Cluster 5.1 Certified\\\", and \\\"Avaloq Certified Professional 2.6\\\". Prior to joining dbi services, Gr\u00e9gory Steulet was Senior Consultant at Trivadis in Lausanne. He also worked as IT Administrator at Box Telecom in Miami Beach, Florida (USA). Gr\u00e9gory Steulet has an Executive MBA from the International Institute of Management in Technology, Fribourg (CH). He also holds a Bachelor's Degree in Business Administration and Computer Science from the University of Applied Sciences Western Switzerland. His branch-related experience covers Telecommunications, Financial Services \\\/ Banking, Logistics, Pharma etc.\",\"url\":\"https:\\\/\\\/www.dbi-services.com\\\/blog\\\/author\\\/gregory-steulet\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Security improvements in MySQL 5.7 - dbi Blog","description":"If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/","og_locale":"en_US","og_type":"article","og_title":"Security improvements in MySQL 5.7","og_description":"If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html","og_url":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/","og_site_name":"dbi Blog","article_published_time":"2014-11-30T10:24:44+00:00","author":"Gr\u00e9gory Steulet","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Gr\u00e9gory Steulet","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/#article","isPartOf":{"@id":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/"},"author":{"name":"Gr\u00e9gory Steulet","@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/7609faada8e4d63e04a28ae29e227098"},"headline":"Security improvements in MySQL 5.7","datePublished":"2014-11-30T10:24:44+00:00","mainEntityOfPage":{"@id":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/"},"wordCount":473,"commentCount":0,"keywords":["MySQL","MySQL administrator","Security"],"articleSection":["Database management"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/","url":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/","name":"Security improvements in MySQL 5.7 - dbi Blog","isPartOf":{"@id":"https:\/\/www.dbi-services.com\/blog\/#website"},"datePublished":"2014-11-30T10:24:44+00:00","author":{"@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/7609faada8e4d63e04a28ae29e227098"},"description":"If you have a look on the last mysql 5.7.4 version or later you will probably see that there are several security improvements. The list of added security features and improvements can be seen on the following page: http:\/\/dev.mysql.com\/doc\/refman\/5.7\/en\/mysql-nutshell.html","breadcrumb":{"@id":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.dbi-services.com\/blog\/security-improvement-in-mysql-57\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.dbi-services.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Security improvements in MySQL 5.7"}]},{"@type":"WebSite","@id":"https:\/\/www.dbi-services.com\/blog\/#website","url":"https:\/\/www.dbi-services.com\/blog\/","name":"dbi Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.dbi-services.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/7609faada8e4d63e04a28ae29e227098","name":"Gr\u00e9gory Steulet","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/e1531483285469fe17ea7a769ce5d8a8a01847185e4245d9c4d22c575c7c6d3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/e1531483285469fe17ea7a769ce5d8a8a01847185e4245d9c4d22c575c7c6d3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e1531483285469fe17ea7a769ce5d8a8a01847185e4245d9c4d22c575c7c6d3e?s=96&d=mm&r=g","caption":"Gr\u00e9gory Steulet"},"description":"Gr\u00e9gory Steulet has more than ten years of experience in database and infrastructure management, engineering, and optimization. He is specialized in Oracle technologies and high availability solutions (Oracle DataGuard, Data Replication Block Device). His expertise also includes Avaloq banking applications, as well as the open source field (MySQL, Unix\/Linux, etc.). Gr\u00e9gory Steulet is \"Oracle Certified Professional 10g\", \"MySQL Cluster 5.1 Certified\", and \"Avaloq Certified Professional 2.6\". Prior to joining dbi services, Gr\u00e9gory Steulet was Senior Consultant at Trivadis in Lausanne. He also worked as IT Administrator at Box Telecom in Miami Beach, Florida (USA). Gr\u00e9gory Steulet has an Executive MBA from the International Institute of Management in Technology, Fribourg (CH). He also holds a Bachelor's Degree in Business Administration and Computer Science from the University of Applied Sciences Western Switzerland. His branch-related experience covers Telecommunications, Financial Services \/ Banking, Logistics, Pharma etc.","url":"https:\/\/www.dbi-services.com\/blog\/author\/gregory-steulet\/"}]}},"_links":{"self":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/4172","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/comments?post=4172"}],"version-history":[{"count":0,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/4172\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/media?parent=4172"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/categories?post=4172"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/tags?post=4172"},{"taxonomy":"type","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/type_dbi?post=4172"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}