Comment 3 for bug 1574458

Verified on MySQL 5.7; Password logging should follow the rules specified on https://dev.mysql.com/doc/refman/5.7/en/password-logging.html, but it seems it's not caught correctly when the grant statement fails. I'll send this upstream.

The error log will contain usernames for failed logins, but I can't think of much else in the way of PII it would contain.