SitePoint Sponsor

User Tag List

Results 1 to 5 of 5
  1. #1
    SitePoint Member
    Join Date
    Apr 2009
    Location
    Acapulco, Mexico
    Posts
    9
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Reseting root user's password, it is true ?

    Hi everybody,

    I read yesterday on internet there is a method to reset the password of root user on linux and windows as well, a couple friends of mine told me several months ago that is not possible doing this, but now I'm afraid and concern because I got too much important data on some tables.
    So, my question is : it is true this ?? it is possible to reset the root's pswd and someone is able to acces my data ??
    I've been searching for some encrypting method since then, and it looks that AES_ENCRYPT/DECRYPT seems to be a good option, but it gives me some problems with resulting block length.
    ENCODE/DECODE works fine, but it says it's quite old method.



    Any advice is wellcome


    Thanks a lot guys

  2. #2
    SitePoint Addict Mal Curtis's Avatar
    Join Date
    Jul 2009
    Location
    New Zealand
    Posts
    327
    Mentioned
    14 Post(s)
    Tagged
    0 Thread(s)
    Is this relating to the mysql root user?

  3. #3
    SitePoint Member
    Join Date
    Apr 2009
    Location
    Acapulco, Mexico
    Posts
    9
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    That's right Mal,

    If you google about this subject, you'll find many articles saying almost the same :

    Do this first, and then that and after this more, and at the end, you can access to mysql using a different root password.


    Take a look at this : http://dev.mysql.com/doc/refman/5.0/...rmissions.html
    and many others.



    I really hope that my english ( wich is not my native language) is wrong, but if not, it means anybody can bypass the password I set to my root user, and see, get, steal any data he/she wants.

    Can you tell if I'm wrong or just missunderstood the article.

    Thanks in advance

  4. #4
    SitePoint Addict Mal Curtis's Avatar
    Join Date
    Jul 2009
    Location
    New Zealand
    Posts
    327
    Mentioned
    14 Post(s)
    Tagged
    0 Thread(s)
    To do it you would need to have root access to the system that MySQL is running on, and if that's the case then people changing the root password to MySQL is the least of your problems!

    As long as the root access to your system is safe, you shouldn't be worried. In a lot of systems, you'll find that the root user doesn't even have a password!!

  5. #5
    SitePoint Member
    Join Date
    Apr 2009
    Location
    Acapulco, Mexico
    Posts
    9
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Ok, I got it Mal !

    Thanks a lot by let me know this, I've been confused then, I was thinking than the root user is the 'allmighty' on mysql, but now I know I can create others user accounts to manage and protect my data.

    10X again


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •