Open renecannao opened 1 year ago
yakirgb
commented
1 year ago MySQL docs: Native Pluggable Authentication
As of MySQL 8.0.34, the mysql_native_password authentication plugin is deprecated and subject to removal in a future version of MySQL.
renecannao
commented
1 year ago Hi @yakirgb . Thank you for pointing this out. Considering how many legacy applications there are, I would bet that removal will be in year 203x 😄
Removal of admin-hash_passwords is part of our effort to introduce caching_sha2_password also for frontend connections in the near future.
yakirgb
commented
1 year ago Great news
When
admin-hash_passwordswas introduced, MySQL 8.0 was absolutely new. Actually, commit 128ff3d was added the same day that MySQL 8.0.0 Development Milestone was released : 2016-09-12 . At the time,mysql_native_passwordwas the most common authentication plugin, and therefore it made sense to have passwords hashed with double SHA1 . Fast forward close to 7 years , MySQL 5.7 is reaching EOL in a few months (October 2023) , MySQL 8.0 is the most popular MySQL version, andcaching_sha2_passwordis becoming the most common authentication plugin. This makes automatic hashing with double SHA1 a good idea in the past, but not anymore.Any from around 1.2.3 till current 2.5.2
Any