Verified on MySQL 5.7; Password logging should follow the rules specified on https://dev.mysql.com/doc/refman/5.7/en/password- logging.html, but it seems it's not caught correctly when the grant statement fails. I'll send this upstream.
The error log will contain usernames for failed logins, but I can't think of much else in the way of PII it would contain. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1574458 Title: Logs.var.log.mysql.error.log.txt contains usernames and passwords To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1574458/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
