After installing mysql, I used phpMyAdmin, I found a problem, when I logged in with ordinary SA users, I couldn't create a new database. After the second reloaded a PHP operating environment and MySQL database library, it is unintentionally found that you can create a new database, blame, take a closer examination, originally in the first $ cfg in the config.inc.php in phpmyadmin ['Servers'] [$ I] ['user'] I didn't change, or the default root, the password is empty. The password is empty, is this not a vulnerability? On the Internet, there is a lot of information on this. No, you have to change your password. Just check the information about the changed code, find a method of the most suitable we use this kind of vegetable, in DOS mode, enter the mysql bin directory, enter the command: mysqladmin -uroot password new password, make the password to change the password If you use this method, I will not empty the password. I have to use: mysql -uroot -P password to log in, then enter: set password for root @ "localhost" = password (''); (should pay attention to the ";", because one command ends with a semicolon If you have forgotten the input semicolon, you can then enter a semicolon to enter the bus, you don't have to re-enter the command.) After entering the command above, the password is cleared. Of course, we can also set new passwords with empty passwords, as long as it is changed to Password ("new password"). Personally think that it is convenient to use the mysqladmin command to see personal habits. After setting a new password, add the newly set password in config.inc.php, don't know how to open the index.php page in phpmyadmin, display # 1250 - Client Does Not Support Authentication Protocol Requested by Server; Consider Upgrading MySQL Client, ~~ Depressed, find a long time, still don't do it, let a break, first put $ cfg ['Servers'] in Config.inc.php [$ I] ['user'] Back to sa. The rest of the problem is, really safe, you will protect yourself, 唉 ~~~
