AWS AmazonRDS documentation change
Summary
Clarified differences between Aurora MySQL 8.4 and community MySQL 8.4 regarding mysql_native_password plugin defaults.
Security assessment
Change provides clearer documentation about authentication plugin behavior but doesn't address vulnerabilities or introduce new security features. Maintains existing security posture.
Diff
diff --git a/AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md b/AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md index e56f473b5..33650967e 100644 --- a//AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md +++ b//AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md @@ -76 +76 @@ The following features that were deprecated in MySQL 8.0 have been removed in My - * The `mysql_native_password` authentication plugin is enabled by default in Aurora MySQL version 8.4, and this setting is not modifiable. The default `authentication_policy` is `*:caching_sha2_password`, so new users are created with `caching_sha2_password` by default. Note that in community MySQL 8.4, `mysql_native_password` is disabled by default; Aurora MySQL 8.4 differs in that the plugin remains enabled to preserve compatibility with existing users. + * The `mysql_native_password` authentication plugin is enabled by default in Aurora MySQL version 8.4, and this setting is not modifiable. The default `authentication_policy` is `*:caching_sha2_password`, so new users are created with `caching_sha2_password` by default. In community MySQL 8.4, `mysql_native_password` is disabled by default. Aurora MySQL 8.4 differs in that the plugin remains enabled to preserve compatibility with existing users.