I didn’t pay much attention to it beforeMySQLPassword SecurityThe configuration method of the policy is just to set the password to a complex password, but no configuration method was found. Today Jiang Chengyao’s WeChat public account just published an article about this , so I will also write down the method here. First of all, this function is a plug-in introduced in mysql versions after 5.5. This function is not enabled in the default source code installation and binary installation. If this function is not enabled, mysql will only give a simple password. Prompt but it will still be allowed to pass
Enable function
Add
plugin-load=validate_password.so validate-password=FORCE_PLUS_PERMANENT
Analysis function# in the my.cnf file.
##
show variables like 'validate%';
1. The password policy represented by validate_password_policy
, the configurable values are as follows: the default is MEDIUM
0 or LOW 仅需需符合密码长度(由参数validate_password_length指定) 1 or MEDIUM 满足LOW策略,同时还需满足至少有1个数字,小写字母,大写字母和特殊字符 2 or STRONG 满足MEDIUM策略,同时密码不能存在字典文件(dictionary file)中
2.validate_password_dictionary_file
Dictionary file used to configure passwords. When validate_password_policy is set to STRONG, you can configure the password dictionary file, which exists in the dictionary file The password must not be used.
3.validate_password_length
is used to set the minimum length of the password. The default value is 8 and the minimum is 0
4.validate_password_mixed_case_count
When validate_password_policy is set to MEDIUM or STRONG, the number of at least both lowercase and uppercase letters in the password, the default is 1 and the minimum is 0; the default is to have at least one lowercase and one uppercase Letters.
##5.validate_password_number_count
When validate_password_policy is set to MEDIUM or STRONG, the minimum number of numbers in the password, the default is 1 and the minimum is 0
6.validate_password_special_char_count
When validate_password_policy is set to MEDIUM or STRONG, the minimum number of special characters in the password, the default is 1 and the minimum is 0
Test
The first password is not long enough and does not have capital letters, the second password is long enough but does not have capital letters
Increasing the password complexity requirements will greatly improve the security of the system, especially in online systems, it is very necessary to enable this function.
The above is the detailed content of Share a MySQL password enhancement plug-in. For more information, please follow other related articles on the PHP Chinese website!