ServerBuddies Support Blog

MySQL - reset a lost MySQL root password

The MySQL root password allows full access to the MySQL database and allows for all actions to be undertaken including creating new users, new databases, setting access rules and so on.

The first thing to do is stop MySQL.

Now start mysql in safe mode.

Next we need to start MySQL in safe mode - that is to say, we will start MySQL but skip the user privileges table.

*ampersand (&) at the end of the command is required.

Login

Next, instruct MySQL which database to use:

Reset password
Enter the new password for the root user as follows:

and finally, flush the privileges and then stop and start mysql.

How can I change/repair my Admin account if the password in Plesk?

First try to restart Parallels Plesk Panel:

Check that the /etc/psa/.psa.shadow file has valid permissions. The right permissions would be

In case you have any other permission, you should change it using the following command:

Check that Mysql server is running and working properly using the “ps ax | grep mysql” command. For example:

To check that Mysql server is running fine, try to access to the mysql console. For example:

In the newest versions of Parallels Plesk Panel, the password can be restored using the “ch_admin_passwd” utility.

To change the password, use a command like the following one:

Load MySQL with ’skip-grant-tables’ option, adding skip-grant-tables to the [mysqld] section of /etc/my.cnf file

Restart MySQL with the following command prompt:

Add the new password to the /etc/psa/.psa.shadow file.

Repair the password using the following command prompt:

Delete skip-grant-tables option from /etc/my.cnf

Restart MySQL.

Reference: http://parallels.com/

Hotfix for characters allowed as password in protected directory section

Only 20 characters allowed as password in protected directory section.

For RHEL4:

http://download.swsoft.com/ensim/download/pro/linux/10.0.0/hotfix/19/rhel4/epl-apache-10.0.0-31.rhel.4ES.i386.rpm

Installation Procedure:

Get the RPMs from the locations mentioned above.

2. Upgrade the RPMs.

For RHEL4ES:

3. service epld restart.

Linux Password Security with pam_cracklib

Standard Unix reusable passwords are not really a good authentication system. In an effort to address this shortcoming, the PAM module pam_cracklib was developed for Linux systems.

Enabling pam_cracklib

The pam_cracklib module is enabled via the system’s standard PAM configuration interface. On Debian systems, this is the /etc/pam.d/common-password file (but it’s /etc/pam.d/system-auth on RedHat-derived systems.

The typical configuration looks something like this:

For debian:

For Redhat:

To setup these password restrictions, edit the /etc/pam.d/system-auth file and add/change the following pam_cracklib arguments highlighted in blue:

Enabling Password Aging

The following example shows how password expiration can be setup for individual user accounts.

The following files and parameters in the table are used when a new account is created with the useradd command. These settings are recorded for each user account in the /etc/shadow file.

Therefore, make sure to configure the following parameters before you create any user accounts using the useradd command:

Also check - /etc/default/useradd

When a user account is created using the useradd command, the parameters listed in the above table are recorded in the /etc/shadow file in the following fields

[username]:[password]:[date]:PASS_MIN_DAYS:PASS_MAX_DAYS:PASS_WARN_AGE:INACTIVE:EXPIRE:

To create a new user account you can execute the following command:

To get password expiration information: