Bug 18848

Summary: Cannot create a new user with phpMyAdmin
Product: Mageia Reporter: Nicolas Peifer <nic>
Component: RPM PackagesAssignee: José Jorge <lists.jjorge>
Status: RESOLVED INVALID QA Contact:
Severity: normal    
Priority: Normal CC: marja11
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: phpmyadmin-4.6.3-1.mga6.src.rpm CVE:
Status comment:

Description Nicolas Peifer 2016-07-03 15:02:36 CEST 
Description of problem:
I cannot create a new user using phpMyAdmin no matter which Authentication Plugin or password I use. For example, when I use "Native MySQL authentication" I get the following error: "#1290 - The MariaDB server is running with the --strict-password-validation option so it cannot execute this statement".

I don't understand this. Even when I hit "generate [password]" I get this error although the password is fairly complex.

Version-Release number of selected component (if applicable):
phpMyAdmin: 4.6.3
MariaDB: 10.1.14
Apache: 2.4.20

How reproducible:
Make sure you have set a password for the root user of the database (e. g. by using SET PASSWORD=password('new_password'); ) after the installation and make sure you can access phpMyAdmin with your browser (e. g. create a link like this: ln -s /usr/share/phpmyadmin/ /var/www/html/pma). Then open the phpMyAdmin interface in your browser and follow the steps below:

1. Login to your phpMyAdmin installation as root user.
2. Click on: User accounts (4th tab) | Add user account
3. Enter user name and password (or generate a password)
4. Select any Authentication Plugin (e. g. Native MySQL authentication)
5. Click on 'Ok' at the bottom

P. S. I've set a password for the root user of the database (using  ).
Marja Van Waes 2016-07-04 07:37:12 CEST

CC: (none) => marja11
Assignee: bugsquad => lists.jjorge

José Jorge 2016-07-05 09:02:26 CEST

Status: NEW => ASSIGNED

Comment 1 José Jorge 2016-07-05 09:54:45 CEST 
This is a bug to report upstream : MariaDB now defaults to reject the way phpmyadmin tries to create users. So please, report it upstream.

For now, I suppose you have found how to do it in CLI, or changed MariaDB settings to allow weak passwords.

I don't see a good way to better package phpmyadmin against this bug, so I am closing as INVALID.

Status: ASSIGNED => RESOLVED
Resolution: (none) => INVALID