Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10564

Galera `wsrep_debug` patch logs MySQL user credentials

    XMLWordPrintable

    Details

    • Sprint:
      10.1.24

      Description

      The recent 'wsrep_debug' patch supplied by Codership (to help diagnose replication issues) is logging various GRANT, UPDATE, DELETE, etc. statements.

      This is expected.

      However, what is not expected is that in the GRANT statements, the IDENTIFIED BY '**************' is coming through clear text.

      This is a problem when customers enable Syslog, and these statements are now shipped off-VM into uncontrolled territory.

      Is it possible to update the patch to mask out that string before logging?

      Also, can this please be added to 10.0 series?

        Attachments

          Activity

            People

            Assignee:
            jplindst Jan Lindström
            Reporter:
            ccalender Chris Calender
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: