Bug #69037 Require re-entry of username and password for highly security-sensitive commands
Submitted: 23 Apr 2013 3:23 Modified: 29 Apr 2013 18:22
Reporter: Luke McConnell Email Updates:
Status: Verified Impact on me:
None 
Category:MySQL Server: DML Severity:S4 (Feature request)
Version:Any! OS:Any
Assigned to: CPU Architecture:Any
Tags: drop table, feature, password, Security

[23 Apr 2013 3:23] Luke McConnell 
Description:
A simple idea for greatly decreasing security vulnerability, simply require as part of the syntax of critical commands (such as DROP TABLE) the re-entry of the username and password (for instance, you'd need to put in "DROP TABLE `Data` USERNAME `myusername` PASSWORD `mypassword` in order to successfully execute the command).

This should make it impossible to use basic SQL injection to do things like drop or empty tables (at least without knowing the password, in which case all bets are off anyway), at a very minor inconvenience to legitimate users who simply need to re-input the username and password in relevant scripts or when using the commands. While this feature is not necessary for people with "correct" security and total protection against SQL injection, it would serve as a useful additional line of defense.

How to repeat:
Er, it's a feature request. Not sure why there's a repeat field.
[29 Apr 2013 18:22] Erlend Dahl 
Thank you for the feature request.