Description
It is recommended to set a password for the administrative user (root by default) to prevent unauthorized access to the SQL database instances.
This recommendation is applicable only for MySQL Instances. PostgreSQL does not offer any setting for No Password from the cloud console.
Rationaleβ
At the time of MySQL Instance creation, not providing an administrative password allows anyone to connect to the SQL database instance with administrative privileges. The root password should be set to ensure only authorized users have these privileges.
Impactβ
Connection strings for administrative clients need to be reconfigured to use a password.
Auditβ
From Google Cloud CLIβ
-
List All SQL database instances of type MySQL:
gcloud sql instances list --filter='DATABASE_VERSION:MYSQL* --project <project_id> --format="(NAME,PRIMARY_ADDRESS)"' -
For every MySQL instance try to connect using the
PRIMARY_ADDRESS, if available:mysql -u root -h <mysql_instance_ip_address>
The command should return either an error message or a password prompt.
Sample Error message:
ERROR 1045 (28000): Access denied for user 'root'@'<Instance_IP>' (using password: NO)
If a command produces the mysql> prompt, the MySQL instance allows anyone to connect with administrative privileges without needing a password.
Note: The No Password setting is exposed only at the time of MySQL instance creation. Once the instance is created, the Google Cloud Platform Console does not expose the set to confirm whether a password for an administrative user is set to a MySQL instance.
Default Valueβ
From the Google Cloud Platform Console, the Create Instance workflow enforces the rule to enter the root password unless the option No Password is selected explicitly.