From: Neil Aggarwal (neilJAMMConsulting.com)
Date: Wed Dec 09 2009 - 19:12:33 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Carlos:

> I was checking my fresh install of MySQL and noticed I had empt spaces
> or missing entries in some sections when I did a search for users on
> the 'mysql' database.

According to this page:
http://dev.mysql.com/doc/mysql-security-excerpt/5.4/en/default-privileges.ht
ml
  If you want to prevent clients from connecting as anonymous users
  without a password, you should either assign a password to each
  anonymous account or else remove the accounts.

We I do a MySQL install, I always go into the mysql client as root
and issue these commands:
  use mysql;
  delete from user where Password='';
  flush privileges;
  quit;

It removes those accounts.

        Neil

--
Neil Aggarwal, (281)846-8957, http://UnmeteredVPS.net
Host your MySQL database on a CentOS VPS for $25/mo
Unmetered bandwidth = no overage charges, 7 day free trial

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]