Bug #87244 Mysqlworkbench attempts a passwordless login before sending stored credentials.
Submitted: 28 Jul 2017 23:33 Modified: 28 Jul 2017 23:53
Reporter: Thomas Luxford Email Updates:
Status: Can't repeat Impact on me:
None 
Category:MySQL Workbench Severity:S3 (Non-critical)
Version:6.0 OS:MacOS
Assigned to: CPU Architecture:Any

[28 Jul 2017 23:33] Thomas Luxford 
Description:
Mysqlworkbench attempts to make a login using password=no.

The logs of my mysql server show failed login attempts from my mysqlworkbench sessions. The session always starts with workbench attempting to login without password, and then it sends the stored password for a successful login.
The desired behaviour is that workbench does not try to login passwordless and only uses the supplied credentials.

From the server logs:
170728 16:17:09 [Warning] Access denied for user 'root'@'localhost' (using password: NO)

There is a correct password stored in the connection of the Mysql Connection list in MysqlWorkBench, but it is not used first.

This has been observed on Linux and MacOSX workbench installations since version 5.1.

How to repeat:
Use Mysqlworkbench ssh tunnel to connect to a mysql server, while using tailf in the logs on the mysql server.

Suggested fix:
Disable mysqlworkbench’s passwordless login attempt.
[28 Jul 2017 23:53] MySQL Verification Team 
Thank you for the bug report. I couldn't repeat with 6.3.9 on Sierra 10.12.6.