[#MDEV-13494] problem with MariaDB-Server 10.2 and security

I install Mariadb 10.2 (in non-interactive)

then i set password :

mysql -e "SET PASSWORD = password('$PASSWORD');"

/* i check it : */

MariaDB [(none)]> select user,host,password from mysql.user;

+------+-----------+-------------------------------------------+

| user | host      | password                                  |

+------+-----------+-------------------------------------------+

| root | localhost | *F7BFEC0021D40A226487B4644EEE5214D6EC9438 |

+------+-----------+-------------------------------------------+

1 row in set (0.00 sec)

MariaDB [(none)]> select current_user();

+----------------+

| current_user() |

+----------------+

| root@localhost |

+----------------+

1 row in set (0.00 sec)

and I can still connect without password and mysql tell me than password here :

mysql

Welcome to the MariaDB monitor.  Commands end with ; or \g.

Your MariaDB connection id is 5

Server version: 10.1.23-MariaDB-9+deb9u1 Debian 9.0

Copyright (c) 2000, 2017, Oracle, MariaDB Corporation Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]>

flush privileges; don't help.

I make it with grant :

mysql -e "GRANT ALL ON *.* TO root@'localhost' IDENTIFIED BY '$PASSWORD';"

root@esysteme3:~# mysql

ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: NO)

and now normal behavior

[MDEV-13494] problem with MariaDB-Server 10.2 and security Created: 2017-08-10 Updated: 2017-08-10 Resolved: 2017-08-10
Status:	Closed
Project:	MariaDB Server
Component/s:	Authentication and Privilege System, Plugin - unix_socket
Affects Version/s:	10.2
Fix Version/s:	N/A