Re: ERROR 1045 (28000): Access denied for user 'MyUser'@'localhost' (using password: YES)
Posted by: Roger Pena
Date: March 24, 2021 02:35PM

Hi Felipe,

I am seeing similar behavior, but just using the mysql command, basically doing this:

1- mysql -u testuser -p -h 127.0.0.1 -P 3306 .
fail with :
"ERROR 2061 (HY000): Authentication plugin 'caching_sha2_password' reported error: Authentication requires secure connection."

2- do the same but connecting through the unix socket:
mysql -u testuser -p
succeed

3- connecting back through 127.0.0.1 . succeed until the cache gets cleared.

how come this behavior can not be considered a bug ?

if the plugin is serious to reject my connection because it is not secure, I guess is concerned about the password flying cleartext, how come it is allowed the second time, isnt the password flying clear text the second time ?

the TCP connection has not being made more secure just because the password got cached through a successful authentication using a secure connection (unix socket), right ?

am I making a mistake somewhere ?

the other thing would be: isnt a tcp connection to 127.0.0.1 as secure as a unix socket connection ?

thanks in advance for any assistance you might provide in understanding this.

Roger

Options: ReplyQuote




Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.