I tried the Search, but couldn't find an exact answer to my newb question....
I just set up MySQL, and I changed the password for the "root" user by using the following:
mysql>SET PASSWORD FOR root@localhost=PASSWORD("new password");
mysql>SET PASSWORD FOR root@"%"=PASSWORD("new password");
The above code DID change the password for "root" and I DO get rejected if I try to use other passwords to log in to MySQL. The problem is, I can still log on to MySQL if I do not specify the user as root, and simply hit ENTER at the password prompt. This obviously seems to defeat the purpose of changing passwords for the root user when I can simply circumvent the check system.
Am I missing something here? Do I need to add some parameters to the my.ini file to make this more secure? As I said, I'm a newb to MySQL....it took me several tries just to get it operational (finally!), so it's VERY possible that I'm missing something that s/b quite obvious.