Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10564

Galera `wsrep_debug` patch logs MySQL user credentials

    Details

    • Sprint:
      10.1.24

      Description

      The recent 'wsrep_debug' patch supplied by Codership (to help diagnose replication issues) is logging various GRANT, UPDATE, DELETE, etc. statements.

      This is expected.

      However, what is not expected is that in the GRANT statements, the IDENTIFIED BY '**************' is coming through clear text.

      This is a problem when customers enable Syslog, and these statements are now shipped off-VM into uncontrolled territory.

      Is it possible to update the patch to mask out that string before logging?

      Also, can this please be added to 10.0 series?

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                jplindst Jan Lindström
                Reporter:
                ccalender Chris Calender
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: