tag:blogger.com,1999:blog-1135944569112521190.post6472696534045521221..comments2024-03-28T08:20:49.787+01:00Comments on Daniël's Database Blog: Network attacks on MySQL, Part 5: Attack on SHA256 based passwordsDaniël van Eedenhttp://www.blogger.com/profile/14757324605223498151noreply@blogger.comBlogger1125tag:blogger.com,1999:blog-1135944569112521190.post-54354198849609539382017-04-05T09:23:00.553+02:002017-04-05T09:23:00.553+02:00Here's a bit more context on sha256_password, ...Here's a bit more context on sha256_password, what it aims to accomplish, and how it differs from mysql_native_password:<br /><br />http://mysqlblog.fivefarmers.com/2015/08/31/protecting-mysql-passwords-with-sha256_password-plugin/<br /><br />In short, it mitigates some significant shortcomings in password storage (for mysql_native_password) at the expense of making secure network transmission more complex.<br /><br />Not that secure distribution of CA public key is significantly easier than distribution of the server public key, but that's also an option.Todd Farmerhttps://www.blogger.com/profile/07381400209965677680noreply@blogger.com