1.4 Verify That the MYSQL_PWD Environment Variable is Not in Use

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


MariaDB can read a default database password from an environment variable called MYSQL_PWD. Avoiding use of this environment variable can better safeguard the confidentiality of MariaDB credentials.


Using the MYSQL_PWD environment variable implies MariaDB credentials are stored as clear text.


Check which users and/or scripts are setting MYSQL_PWD and change them to use a more secure method.
For unattended logins, you should consider
2) Different authentication methods (e.g., X509 certificate verification)

Default Value:

Not set.

See Also