How to set up passwordless access to MariaDB/MySQL

If you regularly access databases on the command line, or if you want to run SQL commands from a script, then you might want to set up passwordless access. This article looks at two ways to configure this; you can either store the password in a user’s ~/.my.cnf file or you can use the unix_socket plugin.

Storing the password in ~/.my.cnf

Database users need privileges on database tables, and they need to log in order to run database queries. The most common way to configure this is by using the IDENTIFIED BY clause followed by the user’s password. For instance, here I create the user example@localhost and grant it all privileges on any table in a database named testdb:

MariaDB [(none)]> CREATE USER 'example'@'localhost' IDENTIFIED BY '6FGGpT3SusKxf_v7HKfD3-ezvq6SqQf2tZVy';
MariaDB [(none)]> GRANT ALL PRIVILEGES ON testdb.* TO 'example'@'localhost' IDENTIFIED BY '6FGGpT3SusKxf_v7HKfD3-ezvq6SqQf2tZVy';
MariaDB [(none)]> FLUSH PRIVILEGES;

The user example can now connect to the testdb database. Note that the -p option causes MariaDB to prompt the user for its password.

$ mysql -u example -p testdb
Enter password: 

MariaDB [testdb]>

If you don’t want to enter the password on every login then you can store the password in a .my.cnf file in your home directory (on Windows the file is named my.ini). The .my.cnf file is the default configuration file for MySQL and MariaDB. A .my.cnf file in a user’s home directory only sets options for the user (i.e. its scope is limited to the user).

The contents of the file should be as follows (obviously you need to set the correct password):

$ cat ~/.my.cnf
[client]
password = 6FGGpT3SusKxf_v7HKfD3-ezvq6SqQf2tZVy

You also want to make sure that the file has 600 permissions. This is particularly important on older Ubuntu systems, as the default permissions let users peek inside each others home directories (RHEL-based servers never allow this):

$ chmod 600 ~/.my.cnf

And that’s it – the user example now has passwordless access:

$ mysql testdb

MariaDB [testdb]>

Using unix_socket authentication

When I created the user example I user the IDENTIFIED BY clause to set the user’s password. An alternative is the IDENTIFIED VIA clause. With that option the user can authenticate using a plugin rather than a password. There are quite a few different authentication plugins. A commonly used plugin is Unix Socket. This plugin authenticates a user using their operating system credentials. When the user logs in it tells MariaDB: “I am a user on this system and I own this database, so don’t you dare bother me with password prompts.” MariaDB then checks if what the user says is true, and if so authenticates the user.

The plugin is installed by default from MariaDB version 10.4.3 onwards. RHEL8-based servers ship an older version, so you may need to install the plugin. You can check if the plugin is already installed using this command:

MariaDB [(none)]> SELECT * FROM information_schema.PLUGINS WHERE PLUGIN_NAME = 'unix_socket';
Empty set (0.001 sec)

Here, the plugin isn’t installed. To fix that you can run the below command. Note that the name of the plugin is auth_socket rather than unix_socket:

MariaDB [(none)]> INSTALL SONAME 'auth_socket';

MariaDB [(none)]> SELECT * FROM information_schema.PLUGINS WHERE PLUGIN_NAME = 'unix_socket' \G
*************************** 1. row ***************************
           PLUGIN_NAME: unix_socket
        PLUGIN_VERSION: 1.0
         PLUGIN_STATUS: ACTIVE
           PLUGIN_TYPE: AUTHENTICATION
   PLUGIN_TYPE_VERSION: 2.1
        PLUGIN_LIBRARY: auth_socket.so
PLUGIN_LIBRARY_VERSION: 1.13
         PLUGIN_AUTHOR: Sergei Golubchik
    PLUGIN_DESCRIPTION: Unix Socket based authentication
        PLUGIN_LICENSE: GPL
           LOAD_OPTION: ON
       PLUGIN_MATURITY: Stable
   PLUGIN_AUTH_VERSION: 1.0
1 row in set (0.002 sec)

Next, you can create the user and double-check that the unix_socket plugin is enabled for the user:

MariaDB [(none)]> CREATE USER example@localhost IDENTIFIED VIA unix_socket;

MariaDB [(none)]> SELECT user, host, plugin FROM mysql.user WHERE user = 'example';
+---------+-----------+-------------+
| user    | host      | plugin      |
+---------+-----------+-------------+
| example | localhost | unix_socket |
+---------+-----------+-------------+

And after that you grant the user one or more privileges:

MariaDB [(none)]> GRANT ALL PRIVILEGES ON testdb.*
    -> TO 'example'@'localhost'
    -> IDENTIFIED VIA unix_socket;

Et voilà! Our user now has passwordless access to the testdb database:

$ mysql testdb

MariaDB [testdb]>

Featured Blogs

Finding the Best Server Solution for a High-Traffic Website

By catalyst2 Team

High-traffic websites are websites that attract a large volume of visitors. These websites often have large user bases, provide a wide range of services and generate significant revenue. Examples of common high-traffic websites include online retail stores, news websites, social media channels and video-streaming services.  When you have a high-traffic website, it’s incredibly important to …

Read Article

What to Look For in a Dedicated Server Hosting Provider

By catalyst2 Team

Dedicated website servers are the ultimate solution for businesses looking for the highest level of performance and reliability. When compared to shared hosting solutions, they offer more control, flexibility and scalability, and they can be tailored to meet the needs of any website. They provide dedicated resources to ensure that websites run efficiently and securely, …

Read Article

Understanding the Basics of VPS Hosting

By catalyst2 Team

When you first start designing a website for your business, there is so much to consider. From choosing the right domain name to making colour decisions, designing a website that perfectly reflects your brand and helps you to attract new customers isn’t always easy.  Whilst focusing on bringing a new website to life, lots of …

Read Article

Why Businesses Should Use Managed Servers for Their Websites

By catalyst2 Team

Website servers are the backbone of the internet and they play an essential role in allowing businesses to operate online. Simply put, servers store and process all of the data that is required to keep a website running, and they play an integral role in today’s digital world.  Website servers are responsible for hosting websites, …

Read Article

Managed VPS Hosting; A Practical Solution to Keep your Website Online

By catalyst2 Team

There are many different web servers available; shared, dedicated and cloud hosting, all of which come with their own benefits and drawbacks. But one useful form of hosting which is often overlooked is the managed VPS. VPS stands for virtual private server and it is a versatile system that suits online businesses in several Industries. …

Read Article

Choosing the Right Dedicated Server for Your Business

By catalyst2 Team

In today’s ever-evolving world of technology, dedicated servers are becoming increasingly popular and they’re now considered to be an essential tool for businesses. Commonly, dedicated servers are used by businesses that need to host a website, however, they can also be used for applications like streaming services and corporate intranets. This advanced solution enables you …

Read Article

Seven Ways we Avoid Server Downtime

By catalyst2 Team

As a business owner, there’s a lot that you have to think about. And one of the major factors to consider is your online presence. These days most of your customers will find you through the internet rather than more traditional forms of marketing. This means that your business needs to have a high quality …

Read Article

How to Choose the Right Server for Your Website

By catalyst2 Team

Finding the right server for your business’ website is vitally important. Your server will facilitate your website, allowing your potential customers to access your webpages; they’re a very important part of your online presence. However, there are so many different server options and packages available that it can be difficult to know which would be …

Read Article

Web Servers; An Introduction to Online Hosting

By catalyst2 Team

Getting your business online is simultaneously an incredibly simple yet incredibly complicated process. Build-your-own-website services make it super easy for you to build a website specifically for your business, so you can get started quickly and on your own terms. But once you look below the surface of your website, things become a little more …

Read Article

How to Prepare for High Traffic Volume to your Website

By catalyst2 Team

Website traffic typically means the number of people who visit your website and engage with your online services at any one particular time. The higher your traffic, the better your website is performing, the more chances you have of making sales and generating a profit. When it comes to choosing the right server, the key …

Read Article

What our clients say

Everything is fine, thank you. The queries I had were dealt with in a prompt, professional and truly friendly manner! I have never experienced such superb service from any other supplier!

You guys and Catalyst2 are awesome!

Kan Parekh, WSI