The security team is getting bugs on this issue, and IMO it is not a good idea to setup a passwordless mysql root account. I understand about making things easy for the end user, but I don't see how this is much different than setting up a password for a login user. I think more people would be upset (if they knew) that the root mysql account is passwordless than being confronted with a dialog prompting for the password. I also realize that I am new to the discussion, but this is a real security issue going back to (at least) dapper.
Wouldn't it be better to prompt for the password until we figure out/have the time to implement the best way to not prompt safely? -- Root password policy for mysql https://bugs.launchpad.net/bugs/119075 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
