Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-11273

Please expand on description for file_key_management_filekey

    XMLWordPrintable

Details

    Description

      Hello,

      This is just a minor documentation request to ask if we can expand slightly on our "file_key_management_filekey" definition.

      In the manual currently, it states:

      "file_key_management_filekey: An optional key to decrypt the key file. If the key starts with FILE: the rest of the value is interpreted as a path to the file that contains the key. "

      https://mariadb.com/kb/en/mariadb/data-at-rest-encryption/

      As-is, I think it can be easy overlook the whole "FILE:/path/to/filekey" as opposed to just setting the variable to the value you wish.

      However, if you are setting this variable in the first place, then you are more than likely going to want to set this to the FILE:/path/to/filekay so that the actual filekey cannot be read by anyone via a SHOW command. Consequently, that file would need the proper permissions so that mysql can read it, but not unauthorized users.

      I think this would be worth adding, somehow, to that definition.

      Thank you for your consideration.

      Attachments

        Activity

          People

            greenman Ian Gilfillan
            ccalender Chris Calender (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.