Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-14796

debian warns of insecure root password when a plugin is used

Details

    • 5.5.59

    Description

      SELECT count(*) FROM mysql.user WHERE user='root' and password=''

      can report insecure root passwords even if a plugin is used.

      If a bit unfair to report an unused password field as insecure if a plugin is set.

      https://github.com/grooverdan/mariadb-server/tree/5.5-debian-insecure-root-plugin-empty is a patch that corrects this by testing adding and plugin='' in the sql. I submit this under the MCA.

      FYI otto, oerdnj

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. MDEV-8375 Debian: Passwordless mysqld root login via socket auth bugfixing

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            Ascending order - Click to sort in descending order
            danblack Daniel Black created issue -
            danblack Daniel Black made changes -
            Field Original Value New Value
            serg Sergei Golubchik made changes -
            Assignee Sergey Vojtovich [ svoj ]
            serg Sergei Golubchik made changes -
            Fix Version/s 10.2 [ 14601 ]
            Fix Version/s 10.0 [ 16000 ]
            Fix Version/s 10.1 [ 16100 ]
            serg Sergei Golubchik made changes -
            Affects Version/s 10.3 [ 22126 ]
            serg Sergei Golubchik made changes -
            Sprint 5.5.59 [ 221 ]
            svoj Sergey Vojtovich made changes -
            Fix Version/s 5.5.59 [ 22612 ]
            Fix Version/s 10.0.34 [ 22613 ]
            Fix Version/s 10.3.4 [ 22904 ]
            Fix Version/s 10.1.31 [ 22907 ]
            Fix Version/s 10.2.13 [ 22910 ]
            Fix Version/s 10.2 [ 14601 ]
            Fix Version/s 5.5 [ 15800 ]
            Fix Version/s 10.0 [ 16000 ]
            Fix Version/s 10.1 [ 16100 ]
            Resolution Fixed [ 1 ]
            Status Open [ 1 ] Closed [ 6 ]
            serg Sergei Golubchik made changes -
            Workflow MariaDB v3 [ 84633 ] MariaDB v4 [ 153460 ]

            People

              svoj Sergey Vojtovich
              danblack Daniel Black
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.