MySQL 8.0 yum安装和配置

MySQL 8.0
centos7.5 x86_64

一、yum安装

1.先卸载机器和mysql有关的东西,有的安装了mariab-lib,会对安装有干扰,卸载了它。

[root@localhost ~]# rpm -qa | grep mariadb
mariadb-libs-5.5.60-1.el7_5.x86_64

 

2.卸载命令

yum erase -y mariadb-libs-5.5.60-1.el7_5.x86_64

 

二.安装mysql 8.0 社区版yum仓库

1.官方网站

2.下载仓库包

wget https://repo.mysql.com//mysql80-community-release-el7-1.noarch.rpm

 

3.安装仓库

rpm -ivh mysql80-community-release-el7-1.noarch.rpm

 

4.安装mysql 8.0版

yum install -y mysql-community-{server,client,common,libs}-*

 

5.启动mysql 8.0

systemctl start mysqld
systemctl enable mysqld

 

6.查看日志,找到临时密码,这里还一个问题,日志这个时间不正确,与本地差好几个小时呢 ,这个在安装完了,再调下。

[root@localhost ~]# tailf /var/log/mysqld.log 
2019-01-12T13:59:34.558708Z 0 [System] [MY-013169] [Server] /usr/sbin/mysqld (mysqld 8.0.13) initializing of server in progress as process 7038
2019-01-12T13:59:36.873412Z 5 [Note] [MY-010454] [Server] A temporary password is generated for root@localhost: :ZSytWyMp6Q>
2019-01-12T13:59:38.113827Z 0 [System] [MY-013170] [Server] /usr/sbin/mysqld (mysqld 8.0.13) initializing of server has completed
2019-01-12T13:59:39.798256Z 0 [System] [MY-010116] [Server] /usr/sbin/mysqld (mysqld 8.0.13) starting as process 7085
2019-01-12T13:59:40.949981Z 0 [Warning] [MY-010068] [Server] CA certificate ca.pem is self signed.
2019-01-12T13:59:41.019836Z 0 [System] [MY-010931] [Server] /usr/sbin/mysqld: ready for connections. Version: '8.0.13'  socket: '/var/lib/mysql/mysql.sock'  port: 3306  MySQL Community Server - GPL.
2019-01-12T13:59:41.190008Z 0 [System] [MY-011323] [Server] X Plugin ready for connections. Socket: '/var/run/mysqld/mysqlx.sock' bind-address: '::' port: 33060

 

这个就启动了 第二行 最后那个就是密码

7.登录

把那个临时密码输入进去,就可以登录了
[root@localhost ~]# mysql -u root -p
Enter password:
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 12
Server version: 8.0.13
 
Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
 
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
 
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
 
mysql>

 

8.修改临时密码

跟之前的版本不一样,得把临时密码给改了,之前set password=password('mima') 这个命令已经不好使了
mysql> show databases;
ERROR 1820 (HY000): You must reset your password using ALTER USER statement before executing this statement.
mysql>

 

yum 安装还有一个问题,就是密码还有复杂性要求,这东西策略我还不知道怎么改
mysql> ALTER USER 'root'@'localhost' IDENTIFIED BY 'dgdb20I5';
ERROR 1819 (HY000): Your password does not satisfy the current policy requirements
mysql> ALTER USER 'root'@'localhost' IDENTIFIED BY 'dgdB20I5!@#';
Query OK, 0 rows affected (0.02 sec)
 
mysql>

 

用新密码重新登录就行了

9.修改日志时间问题

mysql> select now();
+---------------------+
| now()               |
+---------------------+
| 2019-01-12 22:22:19 |
+---------------------+
1 row in set (0.00 sec)
 
mysql> SHOW GLOBAL VARIABLES LIKE 'log_timestamps';
+----------------+-------+
| Variable_name  | Value |
+----------------+-------+
| log_timestamps | UTC   |
+----------------+-------+
1 row in set (0.00 sec)
 
mysql> SET GLOBAL log_timestamps = SYSTEM;
Query OK, 0 rows affected (0.00 sec)
 
mysql> SHOW GLOBAL VARIABLES LIKE 'log_timestamps';
+----------------+--------+
| Variable_name  | Value  |
+----------------+--------+
| log_timestamps | SYSTEM |
+----------------+--------+
1 row in set (0.00 sec)
 
mysql> exit

 

且默认安装后error_log,slow_log 日志时间戳默认为UTC,因此会造成与系统时间不一致,与北京时间相差8个小时
因为log_timestamps 是一个GLOBAL的全局参数,所以直接在登录后去set全局参数,重启后就会直接失效
因此需要在mysql的配置文件中[mysqld]中增加一条log_timestamps的配置
vim /etc/my.cnf
[mysqld]
 
log_timestamps=SYSTEM

 

重启下MySQL
systemctl restart mysqld

 

再查看下日志,果然时间就对了
[root@localhost ~]# tailf /var/log/mysqld.log 
2019-01-12T13:59:38.113827Z 0 [System] [MY-013170] [Server] /usr/sbin/mysqld (mysqld 8.0.13) initializing of server has completed
2019-01-12T13:59:39.798256Z 0 [System] [MY-010116] [Server] /usr/sbin/mysqld (mysqld 8.0.13) starting as process 7085
2019-01-12T13:59:40.949981Z 0 [Warning] [MY-010068] [Server] CA certificate ca.pem is self signed.
2019-01-12T13:59:41.019836Z 0 [System] [MY-010931] [Server] /usr/sbin/mysqld: ready for connections. Version: '8.0.13'  socket: '/var/lib/mysql/mysql.sock'  port: 3306  MySQL Community Server - GPL.
2019-01-12T13:59:41.190008Z 0 [System] [MY-011323] [Server] X Plugin ready for connections. Socket: '/var/run/mysqld/mysqlx.sock' bind-address: '::' port: 33060
2019-01-12T22:29:25.655750+08:00 0 [System] [MY-010910] [Server] /usr/sbin/mysqld: Shutdown complete (mysqld 8.0.13)  MySQL Community Server - GPL.
2019-01-12T22:29:26.338014+08:00 0 [System] [MY-010116] [Server] /usr/sbin/mysqld (mysqld 8.0.13) starting as process 24698
2019-01-12T22:29:26.856796+08:00 0 [Warning] [MY-010068] [Server] CA certificate ca.pem is self signed.
2019-01-12T22:29:26.878264+08:00 0 [System] [MY-010931] [Server] /usr/sbin/mysqld: ready for connections. Version: '8.0.13'  socket: '/var/lib/mysql/mysql.sock'  port: 3306  MySQL Community Server - GPL.
2019-01-12T22:29:27.007610+08:00 0 [System] [MY-011323] [Server] X Plugin ready for connections. Socket: '/var/run/mysqld/mysqlx.sock' bind-address: '::' port: 33060

 

10.修改MySQL数据目录位置

a.查询MySQL 8.0默认数据目录
mysql> show variables like '%dir%';
+-----------------------------------------+--------------------------------+
| Variable_name                           | Value                          |
+-----------------------------------------+--------------------------------+
| basedir                                 | /usr/                          |
| binlog_direct_non_transactional_updates | OFF                            |
| character_sets_dir                      | /usr/share/mysql-8.0/charsets/ |
| datadir                                 | /var/lib/mysql/                |
| innodb_data_home_dir                    |                                |
| innodb_directories                      |                                |
| innodb_log_group_home_dir               | ./                             |
| innodb_max_dirty_pages_pct              | 90.000000                      |
| innodb_max_dirty_pages_pct_lwm          | 10.000000                      |
| innodb_temp_tablespaces_dir             | ./#innodb_temp/                |
| innodb_tmpdir                           |                                |
| innodb_undo_directory                   | ./                             |
| lc_messages_dir                         | /usr/share/mysql-8.0/          |
| plugin_dir                              | /usr/lib64/mysql/plugin/       |
| slave_load_tmpdir                       | /tmp                           |
| tmpdir                                  | /tmp                           |
+-----------------------------------------+--------------------------------+
16 rows in set (0.00 sec)

 

显而易见,datadir在 /var/lib/myql
b.先把MySQL停下来
systemctl stop mysqld

 

c.创建数据目录,复制数据文件(加入我把数据目录放到/home/下)
mkdir /home/mysql_data
cp -r /var/lib/mysql/* /home/mysql_data/
chown -R mysql:mysql /home/mysql_data

 

d.编辑配置文件
vim /etc/my.cnf
datadir=/home/mysql_data
socket=/home/mysql_data/mysql.sock
#下面这得加上,不然服务能起来,你客户端不能登录
[mysql]
socket=/home/mysql_data/mysql.sock

 

e.启动并查询
systemctl start mysqld
[root@localhost my.cnf.d]# mysql -u root -p
Enter password:
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 8
Server version: 8.0.13 MySQL Community Server - GPL
 
Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
 
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
 
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
 
mysql> show variables like '%dir%';
+-----------------------------------------+--------------------------------+
| Variable_name                           | Value                          |
+-----------------------------------------+--------------------------------+
| basedir                                 | /usr/                          |
| binlog_direct_non_transactional_updates | OFF                            |
| character_sets_dir                      | /usr/share/mysql-8.0/charsets/ |
| datadir                                 | /home/mysql_data/              |
| innodb_data_home_dir                    |                                |
| innodb_directories                      |                                |
| innodb_log_group_home_dir               | ./                             |
| innodb_max_dirty_pages_pct              | 90.000000                      |
| innodb_max_dirty_pages_pct_lwm          | 10.000000                      |
| innodb_temp_tablespaces_dir             | ./#innodb_temp/                |
| innodb_tmpdir                           |                                |
| innodb_undo_directory                   | ./                             |
| lc_messages_dir                         | /usr/share/mysql-8.0/          |
| plugin_dir                              | /usr/lib64/mysql/plugin/       |
| slave_load_tmpdir                       | /tmp                           |
| tmpdir                                  | /tmp                           |
+-----------------------------------------+--------------------------------+
16 rows in set (0.01 sec)

 

11.mysql免密码登录

直接在[mysql]下面添加root password就行了
vim /etc/my.cnf
[mysql]
user='root'
password='dgdB20I5!@#'

 

下次直接输入mysql就可以登录了,方便的很,生产环境谨慎使用
[root@localhost ~]# mysql
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 12
Server version: 8.0.13 MySQL Community Server - GPL
 
Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
 
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
 
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
 
mysql> exit
Bye

 

12.配置MySQL远程连接配置

[root@localhost ~]# mysql
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 15
Server version: 8.0.13 MySQL Community Server - GPL
 
Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
 
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
 
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
 
 
mysql> use mysql;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A
 
Database changed
mysql> select host, user, authentication_string, plugin from user;
+-----------+------------------+------------------------------------------------------------------------+-----------------------+
| host      | user             | authentication_string                                                  | plugin                |
+-----------+------------------+------------------------------------------------------------------------+-----------------------+
| localhost | mysql.infoschema | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | caching_sha2_password |
| localhost | mysql.session    | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | caching_sha2_password |
| localhost | mysql.sys        | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | caching_sha2_password |
| localhost | root             | $A$005$LP^CZmMk
                                                T4'S0<PcRj0oL/YI9p7IGi1Q59wifPwX/93nRiZez4GboEPK/ | caching_sha2_password |
+-----------+------------------+------------------------------------------------------------------------+-----------------------+
4 rows in set (0.00 sec)
 
mysql>

 

这里看到都是localhost,所以还不能远程连接
root账户为默认的密码加密方式是:caching_sha2_password;而现在很多客户端工具还不支持这种加密认证方式,连接测试的时候就会报错:client does not support authentication protocol requested by server; consider upgrading MySQL client,这里的错误信息就是不支持身份认证方式 新创建的用户有效,老用户还是不行的
所以,我们需要修改下配置文件,修改下默认加密方式,在[mysqld]下面添加一行default-authentication-plugin=mysql_native_password
vim /etc/my.cnf
[mysqld]
default-authentication-plugin=mysql_native_password

 

重启MySQL
systemctl restart mysqld

 

修改用户远程访问权限
mysql> grant all on *.* to 'root'@'%' identified by 'Zhang87073!';
ERROR 1064 (42000): You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'identified by 'Zhang87073!'' at line 1

 

MySQL 8.0 这里报错了。。。之前的版本都是这样一行就搞定了 。。。所以 。。。
#这里先创建一个用户
mysql> create user 'root'@'%' identified by 'Zhang87073!';
Query OK, 0 rows affected (0.06 sec)
#在进行授权
mysql> grant all privileges on *.* to 'root'@'%' with grant option;
Query OK, 0 rows affected (0.05 sec)
#再查看一下
mysql> use mysql;
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A
 
Database changed
mysql> select host, user, authentication_string, plugin from user;
+-----------+------------------+------------------------------------------------------------------------+-----------------------+
| host      | user             | authentication_string                                                  | plugin                |
+-----------+------------------+------------------------------------------------------------------------+-----------------------+
| %         | root             | *43CAAB27D90B4E33EC75DEEFA02577F7E2BACE93                              | mysql_native_password |
| localhost | mysql.infoschema | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | caching_sha2_password |
| localhost | mysql.session    | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | caching_sha2_password |
| localhost | mysql.sys        | $A$005$THISISACOMBINATIONOFINVALIDSALTANDPASSWORDTHATMUSTNEVERBRBEUSED | caching_sha2_password |
| localhost | root             | $A$005$LP^CZmMk
                                                T4'S0<PcRj0oL/YI9p7IGi1Q59wifPwX/93nRiZez4GboEPK/ | caching_sha2_password |
+-----------+------------------+------------------------------------------------------------------------+-----------------------+
5 rows in set (0.00 sec)
远程连接测试
 

13.修改密码策略

yum 安装的时候 遇到了密码策略的问题,我查询了一下,现在得到了答案,且发现二进制包安装完,这个密码策略是空的。
a.查看当前的密码策略
mysql> SHOW VARIABLES LIKE 'validate_password%';
+--------------------------------------+--------+
| Variable_name                        | Value  |
+--------------------------------------+--------+
| validate_password.check_user_name    | ON     |
| validate_password.dictionary_file    |        |
| validate_password.length             | 8      |
| validate_password.mixed_case_count   | 1      |
| validate_password.number_count       | 1      |
| validate_password.policy             | MEDIUM |
| validate_password.special_char_count | 1      |
+--------------------------------------+--------+
7 rows in set (0.00 sec)

 

b.密码策略的解释
validate_password.check_user_name 这个参数用来检查用户名
validate_password_dictionary_file 字典文件
validate_password_length密码长度的最小值(这个值最小要是4)。
validate_password_mixed_case_count大小写的最少个数
validate_password_number_count 密码中数字的最少个数
validate_password_policy 这个参数用于控制validate_password的验证策略 0-->low 1-->MEDIUM 2-->strong。
validate_password_special_char_count 特殊字符的最小个数
c.修改密码策略
举个例子 知道怎么搞就行了 (我觉得这东西还是复杂点没坏处)
mysql > set global validate_password.policy=0;
mysql > set global validate_password.policy=0;
mysql > set global validate_password.length=4;
mysql > set global validate_password.check_user_name=OFF;
mysql > set global validate_password.number_count=0;
mysql > set global validate_password.special_char_count=0;
mysql > flush privileges;
mysql > ALTER USER 'root'@'%' IDENTIFIED WITH mysql_native_password BY 'root' ;
mysql > update user set host='%' where user ='root';

 

OK了 就写这么多吧。MySQL 8.0我也是第一次用
posted @ 2020-05-13 14:07  SRE运维博客  阅读(2670)  评论(0编辑  收藏  举报