MySQL password function

by

The docs for MySQL’s PASSWORD() function states:

The PASSWORD() function is used by the authentication system in MySQL Server; you should not use it in your own applications.

Read “You’re Probably Storing Passwords Incorrectly” for better advice on hashing and storing passwords.

MD5 and SHA-1 are considered to be too weak to use for passwords. The current recommendation is to use SHA-256.

I contributed a patch to MySQL to support a SHA2() function, and the patch was accepted, but since their roadmap has changed it’s not clear when it will make it into a released product.

In the meantime, you can use hashing and salting in your programming language, and simply store the result hash digest in the database. If you use PHP, SHA-256 is available in the hash() function.

update: MySQL 5.5.8 was released in December 2010, and that release contains support for the SHA2() function.

More Related Contents:

  1. What data type to use for hashed password field and what length?
  2. MySQL – ERROR 1045 – Access denied
  3. Setting the MySQL root user password on OS X
  4. MySQL user DB does not have password columns – Installing MySQL on OSX
  5. Resetting ROOT password in MySQL 5.6
  6. mysql root password forgotten
  7. How to reset the root password in MySQL 8.0.11?
  8. How to change the mysql root password
  9. How to get back Lost phpMyAdmin Password, XAMPP
  10. How do I specify unique constraint for multiple columns in MySQL?
  11. grant remote access of MySQL database from any IP address
  12. Should MySQL have its timezone set to UTC?
  13. JDBC batch insert performance
  14. SQL – Update multiple records in one query
  15. How to find gaps in sequential numbering in mysql?
  16. How to store IPv6-compatible address in a relational database
  17. Scaling solutions for MySQL (Replication, Clustering)
  18. MySQL show status – active or total connections?
  19. mysql check if numbers are in a comma separated list
  20. mySQL DataSource on Visual Studio 2012
  21. MySQL update case help
  22. Dropping Unique constraint from MySQL table
  23. passing LIMIT as parameters to MySQL sproc
  24. What is the difference between BIT and TINYINT in MySQL?
  25. MySQL ERROR 1290 (HY000) –secure-file-priv option
  26. Can’t connect to MySQL server on ‘127.0.0.1’ (10061) (2003)
  27. MySQL, Concatenate two columns
  28. Is it Possible to Enforce Data Checking in MySQL using Regular expression
  29. How to select data where a field has a min value in MySQL?
  30. “General error: 1005 Can’t create table” Using Laravel Schema Build and Foreign Keys

Leave a Comment