Uploaded image for project: 'MariaDB MaxScale'
  1. MariaDB MaxScale
  2. MXS-6033

No error or warning when using an unreadable PAM config

    XMLWordPrintable

Details

    Description

      When requesting a specific PAM config to be used with e.g.

      admin_pam_readwrite_service=mariadb_unix

      but the related config file, here /etc/pam.d/mariadb_unix not being readable to the maxscale process, no error or warning seems to be logged anywhere, instead PAM seems to silently fall back to its default behavior, using Unix password authentication.

      This is especially confusing when the requested configuration is based on Unix password authentication, but adds additional constraints on top, like requiring that the user must be in a specific group ...

      For details how to reproduce see https://jira.mariadb.org/browse/MXS-5265

      Attachments

        Issue Links

          is blocked by

          New Feature - A new feature of the product, which has yet to be developed. MXS-5299 SUID sandbox support for admin_pam_readonly/readwrite_service

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Open
          relates to

          Bug - A problem which impairs or prevents the functions of the product. MXS-5265 Strange behavior of admin_pam_readwrite_service

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            People

              esa.korhonen Esa Korhonen
              hholzgra Hartmut Holzgraefe
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.