# Looking for Empty Password
@mysqlstatlist = select_array
-"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE password = '' OR password IS NULL";
+"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE authentication_string = '' OR authentication_string IS NULL";
if (@mysqlstatlist) {
foreach my $line ( sort @mysqlstatlist ) { chomp($line);
@@ -1282,7 +1282,7 @@
# Looking for User with user/ uppercase /capitalise user as password
@mysqlstatlist = select_array
-"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE CAST(password as Binary) = PASSWORD(user) OR CAST(password as Binary) = PASSWORD(UPPER(user)) OR CAST(password as Binary) = PASSWORD(UPPER(LEFT(User, 1)) + SUBSTRING(User, 2, LENGTH(User)))";
+"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE CAST(authentication_string as Binary) = PASSWORD(user) OR CAST(authentication_string as Binary) = PASSWORD(UPPER(user)) OR CAST(authentication_string as Binary) = PASSWORD(UPPER(LEFT(User, 1)) + SUBSTRING(User, 2, LENGTH(User)))";
if (@mysqlstatlist) {
foreach my $line ( sort @mysqlstatlist ) { chomp($line);
@@ -1323,11 +1323,11 @@
# Looking for User with user/ uppercase /capitalise weak password @mysqlstatlist = select_array
-"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE password = PASSWORD('"
+"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE authentication_string = PASSWORD('"
. $pass
- . "') OR password = PASSWORD(UPPER('"
+ . "') OR authentication_string = PASSWORD(UPPER('"
. $pass
- . "')) OR password = PASSWORD(UPPER(LEFT('"
+ . "')) OR authentication_string = PASSWORD(UPPER(LEFT('"
. $pass
. "', 1)) + SUBSTRING('"
. $pass
Hi folks,
trivial patch here
diff -u mysqltuner.orig mysqltuner
--- mysqltuner.orig 2019-09-13 05:16:01.221572477 +0200
+++ mysqltuner 2019-09-13 05:17:37.479446200 +0200
@@ -1266,7 +1266,7 @@
# Looking for Empty Password string = '' OR authentication_ string IS NULL";
chomp( $line);
@mysqlstatlist = select_array
-"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE password = '' OR password IS NULL";
+"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE authentication_
if (@mysqlstatlist) {
foreach my $line ( sort @mysqlstatlist ) {
@@ -1282,7 +1282,7 @@
# Looking for User with user/ uppercase /capitalise user as password UPPER(user) ) OR CAST(password as Binary) = PASSWORD( UPPER(LEFT( User, 1)) + SUBSTRING(User, 2, LENGTH(User)))"; tion_string as Binary) = PASSWORD(user) OR CAST(authentica tion_string as Binary) = PASSWORD( UPPER(user) ) OR CAST(authentica tion_string as Binary) = PASSWORD( UPPER(LEFT( User, 1)) + SUBSTRING(User, 2, LENGTH(User)))";
chomp( $line);
@ mysqlstatlist =
select_ array string = PASSWORD('" string = PASSWORD(UPPER('" UPPER(LEFT( '" string = PASSWORD( UPPER(LEFT( '"
@mysqlstatlist = select_array
-"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE CAST(password as Binary) = PASSWORD(user) OR CAST(password as Binary) = PASSWORD(
+"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE CAST(authentica
if (@mysqlstatlist) {
foreach my $line ( sort @mysqlstatlist ) {
@@ -1323,11 +1323,11 @@
# Looking for User with user/ uppercase /capitalise weak password
-"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE password = PASSWORD('"
+"SELECT CONCAT(user, '\@', host) FROM mysql.user WHERE authentication_
. $pass
- . "') OR password = PASSWORD(UPPER('"
+ . "') OR authentication_
. $pass
- . "')) OR password = PASSWORD(
+ . "')) OR authentication_
. $pass
. "', 1)) + SUBSTRING('"
. $pass