Bug #16031 the root account of the mysql database system can be deleted easily
Submitted: 28 Dec 2005 5:46 Modified: 3 May 2006 3:17
Reporter: ming lu Email Updates:
Status: Closed Impact on me:
None 
Category:MySQL Administrator Severity:S2 (Serious)
Version:1.1.6 OS:Linux (linux)
Assigned to: Alfredo Kojima CPU Architecture:Any

[28 Dec 2005 5:46] ming lu
Description:
The root account of the mysql database system can be deleted easily.
If the root account be deleted, you can not create another new account with the super privilege anymore. I think this is a  latent problem. 

How to repeat:
delete the root account, then you will find that you cannot control the mysql database  system totally. 

Suggested fix:
Root is a very important database system account, it should be protected strictly. I think that it will be helpful to promote the security and the robustness of the database system.
[28 Dec 2005 10:24] Valeriy Kravchuk
Thank you for a problem report. If you mean, that it is easy to delete root user from MySQL Administrator, please, check newer version, 1.1.5. 

When I tried to delete it in 1.1.6 on Windows I've got exception, "You cannot delete the root user".
[13 Jan 2006 8:11] ming lu
Yes, the root account had been protected in windows mysql-administrator V1.1.6. But in linux mysql-administrator V1.1.5, it can be deleted easily.
[16 Jan 2006 13:06] Valeriy Kravchuk
Version 1.1.6 is available for Linux also now. Please check (http://dev.mysql.com/downloads/administrator/1.1.html) and inform about the results.
[7 Feb 2006 2:21] ming lu
the problem also exist
[8 Feb 2006 16:38] Jorge del Conde
I was able to reproduce this under FC4
[3 May 2006 3:17] Alfredo Kojima
Added checks in Linux and OSX.