Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-6385

MariaDB Galera Authentication between nodes and SST

    XMLWordPrintable

    Details

      Description

      Considering authentication requirements between MariaDB Galera Nodes, we would like to suggest several changes to be mate within MariaDB Galera Cluster:
      1) Authentication methods should be implemented between MariaDB Galera cluster nodes based either on Kerberos/AD/LDAP. The reason behind this requirement is that in current implementation there is a possibility to attach any node to the cluster with full dump of data inside the database and future access to this data by changing credentials in database.
      2) SST methods based on xtrabackup require login/password of user having access to database be written in a plain-text format. We would like to suggest modifying this section to either save credential in encrypted format, or adding Kerberos authentication.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              KennethDyer Kenneth Dyer
              Reporter:
              trofimal Aleksej Trofimov
              Votes:
              4 Vote for this issue
              Watchers:
              9 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: