Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-19496

PAM authentication credentials should always be encrypted

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Won't Fix
    • Affects Version/s: None
    • Fix Version/s: N/A
    • Component/s: Plugin - pam
    • Labels:
      None

      Description

      I am filing this as a bug as this seems to be a security hole from a user perspective.

      PAM auth plugin should utilize encryption for credentials just as is expected with default authentication methods (perhaps via the default authentication plugin or other encryption scheme).

      This should happen regardless of TLS or REQUIRE SSL grant etc.

        Attachments

          Activity

            People

            Assignee:
            serg Sergei Golubchik
            Reporter:
            manjot Manjot Singh
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Git Integration