Bug #5198 Usage of the PASSWORD keyword within the GRANT syntax is not clearly explained
Submitted: 25 Aug 2004 4:48 Modified: 25 Aug 2004 18:33
Reporter: Raymond DeRoo Email Updates:
Status: Closed Impact on me:
None 
Category:MySQL Server: Documentation Severity:S3 (Non-critical)
Version:all OS:n/a
Assigned to: Paul DuBois CPU Architecture:Any

[25 Aug 2004 4:48] Raymond DeRoo 
Description:
The keyword PASSWORD when used with IDENTIFIED BY when GRANTing access to a user does 
not seem to have clearly described behavior.

Although the page does state:

   "If you don't want to send the password in clear text, you can use the PASSWORD keyword 
followed by a scrambled password from the PASSWORD() SQL function or the 
make_scrambled_password() C API function."

How to repeat:
Read the page http://dev.mysql.com/doc/mysql/en/GRANT.html

Suggested fix:
It would be nice if there was also a sub-heading of:

IDENTIFIED BY vs IDENTIFIED BY PASSWORD:
The difference between IDENTIFIED BY and IDENTIFIED BY PASSWORD is the string which you 
supply. IDENTIFIED BY 'string' expects that the value you provide for 'string' to be the actually 
password you wan the user to use when connecting to the MySQL server. With IDENTIFIED BY 
PASSWORD 'string' the value provided in 'string' expects to be the already encrypted, or hashed, 
value.
[25 Aug 2004 18:33] Paul DuBois 
Thank you for your bug report. This issue has been addressed in the
documentation. The updated documentation will appear on our website
shortly, and will be included in the next release of the relevant
product(s).