AWS Security ChangesHomeSearch

AWS AmazonRDS documentation change

Service: AmazonRDS · 2026-06-13 · Documentation low

File: AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md

Summary

Clarified differences between Aurora MySQL 8.4 and community MySQL 8.4 regarding mysql_native_password plugin defaults.

Security assessment

Change provides clearer documentation about authentication plugin behavior but doesn't address vulnerabilities or introduce new security features. Maintains existing security posture.

Diff

diff --git a/AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md b/AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md
index e56f473b5..33650967e 100644
--- a//AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md
+++ b//AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.MySQL84.md
@@ -76 +76 @@ The following features that were deprecated in MySQL 8.0 have been removed in My
-  * The `mysql_native_password` authentication plugin is enabled by default in Aurora MySQL version 8.4, and this setting is not modifiable. The default `authentication_policy` is `*:caching_sha2_password`, so new users are created with `caching_sha2_password` by default. Note that in community MySQL 8.4, `mysql_native_password` is disabled by default; Aurora MySQL 8.4 differs in that the plugin remains enabled to preserve compatibility with existing users.
+  * The `mysql_native_password` authentication plugin is enabled by default in Aurora MySQL version 8.4, and this setting is not modifiable. The default `authentication_policy` is `*:caching_sha2_password`, so new users are created with `caching_sha2_password` by default. In community MySQL 8.4, `mysql_native_password` is disabled by default. Aurora MySQL 8.4 differs in that the plugin remains enabled to preserve compatibility with existing users.