Details
-
Bug
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Duplicate
-
10.4(EOL)
Description
I had Simple Password Check Plugin on 3 node cluster setup with below settings.
simple_password_check_digits 1 |
simple_password_check_letters_same_case 1 |
simple_password_check_minimal_length 8 |
simple_password_check_other_characters 1 |
However, when tried to create user failed to meet simple password check plugin criteria it still replicated with clear text password.
MariaDB [(none)]> CREATE USER TestUser@localhost IDENTIFIED BY 'mariadb'; |
ERROR 1819 (HY000): Your password does not satisfy the current policy requirements |
It seems like clear text password is logged into binary log and below error/warning from rest of cluster nodes.
2022-03-07 13:25:13 2 [ERROR] Slave SQL: Error 'Your password does not satisfy the current policy requirements' on query. Default database: ''. Query: 'CREATE USER TestUser@localhost IDENTIFIED BY 'mariadb'', Internal MariaDB error code: 1819 |
2022-03-07 13:25:13 2 [Warning] WSREP: Ignoring error 'Your password does not satisfy the current policy requirements' on query. Default database: ''. Query: 'CREATE USER TestUser@localhost IDENTIFIED BY 'mariadb'', Error_code: 1819 |
Attachments
Issue Links
- is duplicated by
-
MDEV-9042 CREATE USER passwords being written to bin log in clear text
- Open
-
MDEV-10584 Obscure plain text passwords from server logs
- Open