Uploaded image for project: 'MariaDB MaxScale'
  1. MariaDB MaxScale
  2. MXS-6028

Support SUID mode for admin_pam_readwrite_service and admin_pam_readonly_service

    XMLWordPrintable

Details

    • New Feature
    • Status: Open (View Workflow)
    • Minor
    • Resolution: Unresolved
    • 25.01.4, 25.10.1
    • None
    • REST-API
    • None

    Description

      REST-API pam authentication only uses the traditional PAM auth implementation, which runs with the same user account as MaxScale itself. This may fail if the "maxscale"-user does not have access to password-related files e.g. /etc/shadow. The PAM authenticator module does support a SUID wrapper mode (must be toggled), which runs with root-privileges. The wrapper tool works similarly to the equivalent tool in MariaDB Server. A SUID-mode should be implemented also for the REST-API.

      Attachments

        Activity

          People

            Unassigned Unassigned
            esa.korhonen Esa Korhonen
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.