mysql (mariadb) ERROR 1698 (28000): Access denied for user 'root'@'localhost'

mysql linux passwords mariadb

I'm working on Xubuntu 15.04. I already installed the MariaDB-Server on various systems and was always asked for a root password during installation. This time, however, I don't remember being asked for the password. When I try to login without a password (or a blank password), I get the Access denied for user 'root'@'localhost' error. I tried uninstalling the package completely by

sudo apt-get remove mariadb-server
sudo apt-get purge mariadb-server

When I reinstalled, I still didn't get asked for the root password.

I tried the mysqld --skip-grant-tables approach from mysql how to fix Access denied for user 'root'@'localhost' . I can modify the password for the root user in the mysql database - at least the hash value changes - but I still cannot login with the new password after a restart of the mysql-server. I still get the same error.

The user debian-sys-maint does not exist. So, I cannot use it to fix anything.

Any ideas what else I could try?


You need to reset the password. so for that 

sudo mysql -u root
use mysql;
update user set plugin='' where User='root';
flush privileges;
exit;

The idea with the new set-up is that you shouldn't be using passwords at all. See UNIX_SOCKET Authentication Plugin for details.

What's especially relevant is the contents of /usr/share/doc/mariadb-server-10.0/README.Debian.gz on Ubuntu 16.04:

On new installs no root password is set and no debian-sys-maint user is created anymore. Instead the MariaDB root account is set to be authenticated using the unix socket, e.g. any mysqld invocation by root or via sudo will let the user see the mysqld prompt.

You may never ever delete the mysql user "root". Although it has no password is set, the unix_auth plugin ensure that it can only be run locally as the root user.

The credentials in /etc/mysql/debian.cnf specify the user which is used by the init scripts to stop the server and perform logrotation. This used to be the debian-sys-maint user which is no longer used as root can run directly.

So if you disable that plug-in for root and set a password, the daily cron job will break as it's assuming it will log in as root without a password, but with the plug-in.

Later it says:

Scripts should run as a user have have the required grants and be identified via unix_socket.

So it looks like passwords should no longer be used by applications.

Related

Which resize algorithm to choose for videos?
Terrible font rendering in some applications but not others
Convert animated SVG to movie
Kinesis Advantage OS X media keys
How can I set a h.264 profile level with ffmpeg?
Mapping Caps Lock to Escape and Control on Windows 7
Is it possible for L2TP VPN to do auto route configuration for client during connected?
How do I ground a network switch?
MySQL 5.7 bind-address doesn't work
error while loading shared libraries: libcrypto.so.1.1
How to verify a AWS VPC (S3) endpoint works?
Is there an equivalent command for 'init.d/networking restart' in OS X