Details
-
New Feature
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Fixed
-
None
-
mariadb/skysql-enterprise-columnstore-handoff sky-1.5.4-1 95e34753d40f
Description
The access to the automatically created database users cej, idrep, and maxscale isn't able to be restricted by IP addresses. All three users are accessible from everywhere.
It would be a nice security addition to be able to specify multiple allowed IP ranges for the users.
How to reproduce:
jens@ubuntu18:~/columnstore-docker-cluster$ docker-compose up -d
|
Creating network "columnstore-docker-cluster_default" with the default driver
|
Creating volume "columnstore-docker-cluster_data1" with default driver
|
Creating volume "columnstore-docker-cluster_data2" with default driver
|
Creating volume "columnstore-docker-cluster_data3" with default driver
|
Creating volume "columnstore-docker-cluster_storagemanager" with default driver
|
Creating mcs3 ... done
|
Creating mcs2 ... done Creating mcs1 ... done
|
Creating mx1 ... done
|
jens@ubuntu18:~/columnstore-docker-cluster$ sleep 60 && docker exec -it mcs1 mariadb -e "SELECT user,host FROM mysql.user"
|
+-------------+-----------+
|
| User | Host |
|
+-------------+-----------+
|
| cej | % |
|
| idbrep | % |
|
| maxscale | % |
|
| mariadb.sys | localhost |
|
| mysql | localhost |
|
| root | localhost |
|
+-------------+-----------+
|