[MDEV-18328] Make DISKS plugin check some privilege to access information_schema.DISKS table - Jira

Details

Type: Task
Status: Closed (View Workflow)
Priority: Critical
Resolution: Fixed
Fix Version/s: 10.2.26, 10.1.41, 10.3.17, 10.4.7
Component/s: Information Schema, Plugins
Labels:
None

Description

The documentation for the information_schema.DISKS table says the following:

This plugin does not check user privileges. When it is enabled, any user can query the INFORMATION_SCHEMA.DISKS table and see all the information it provides.

https://mariadb.com/kb/en/library/information-schema-disks-table/

It seems like this table should be protected by some privilege. Maybe FILE and/or SUPER privileges would be appropriate?

Attachments

Issue Links

relates to

MDEV-14533 Provide information_schema tables using which hardware information can be obtained.

Closed

Activity

Ascending order - Click to sort in descending order

Daniel Black added a comment - 2019-01-22 05:18

I think a global "read only" privilege like 'PROCESS' or 'SHOW DATABASES' as reading this table is of lower level sensitivity.

Daniel Black added a comment - 2019-01-22 05:18 I think a global "read only" privilege like 'PROCESS' or 'SHOW DATABASES' as reading this table is of lower level sensitivity.

Geoff Montee (Inactive) added a comment - 2019-01-23 00:17

Good point. Maybe FILE or SUPER would be overkill for this table.

Geoff Montee (Inactive) added a comment - 2019-01-23 00:17 Good point. Maybe FILE or SUPER would be overkill for this table.

Oleksandr Byelkin added a comment - 2019-06-08 15:38

I made it with FILE

Oleksandr Byelkin added a comment - 2019-06-08 15:38 I made it with FILE

Sergei Golubchik added a comment - 2019-06-11 20:20

It must be an empty table, not an error (you can do a warning or a note, perhaps, I'm not sure about it). SQL Standard is very clear that any user can always select from information_schema tables, they all have

GRANT SELECT ON INFORMATION_SCHEMA.* TO PUBLIC

For example, if a user selects from I_S.TABLES, he doesn't get an error when there's a table he has no privileges on — he simply doesn't see that table in the output. This is the standard I_S behavior, anyone can select, but users don't see information about objects they have no privileges on.

Sergei Golubchik added a comment - 2019-06-11 20:20 It must be an empty table, not an error (you can do a warning or a note, perhaps, I'm not sure about it). SQL Standard is very clear that any user can always select from information_schema tables, they all have GRANT SELECT ON INFORMATION_SCHEMA.* TO PUBLIC For example, if a user selects from I_S.TABLES, he doesn't get an error when there's a table he has no privileges on — he simply doesn't see that table in the output. This is the standard I_S behavior, anyone can select, but users don't see information about objects they have no privileges on.

Oleksandr Byelkin added a comment - 2019-06-11 20:38

fixed

Oleksandr Byelkin added a comment - 2019-06-11 20:38 fixed

Sergei Golubchik added a comment - 2019-06-18 14:18

ok to push

Sergei Golubchik added a comment - 2019-06-18 14:18 ok to push

People

Assignee:: Oleksandr Byelkin

Reporter:: Geoff Montee (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2019-01-21 23:01

Updated:: 2019-06-19 08:21

Resolved:: 2019-06-19 08:21

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.

MariaDB Server