[MCOL-342] postConfigure and other commands will have password showing in ps output Created: 2016-10-03 Updated: 2023-10-26 Resolved: 2020-04-15 |
|
| Status: | Closed |
| Project: | MariaDB ColumnStore |
| Component/s: | ? |
| Affects Version/s: | 1.0.3 |
| Fix Version/s: | N/A |
| Type: | Bug | Priority: | Major |
| Reporter: | David Hill (Inactive) | Assignee: | Unassigned |
| Resolution: | Won't Fix | Votes: | 0 |
| Labels: | None | ||
| Sprint: | 2016-21, 2016-22, 2017-20 |
| Description |
|
Report by a customer, passwords showing up in ps command during postConfigure run Password shows up in the process list on the PM1 host’s pstree for postConfigure root 24669 0.0 0.0 155092 5076 ? Ss 02:56 0:00 _ sshd: root@pts/0 |
| Comments |
| Comment by David Hill (Inactive) [ 2016-11-01 ] |
|
all admin commands should be change to read the user password from a file and not have it requested or shown in any of the running process. It will continue to support use of 'ssh-keys' Changes to the following are needed: |
| Comment by David Hill (Inactive) [ 2016-11-01 ] |
|
Code would enforce the usage of putting the username/password in .ssh/config or using ssh-keys. |
| Comment by David Hill (Inactive) [ 2016-11-01 ] |
|
and this would also apply to mysql password, which is prompted for during postconfigure. This would need to reside in my.cnf |
| Comment by David Hill (Inactive) [ 2016-11-02 ] |
|
change of plan I'm coding to where a multi-node install requires the use of ssh-keys.. I will change all places that prompt or require a password and default to using the ssh-keys |
| Comment by David Hill (Inactive) [ 2016-11-02 ] |
|
beep beep beep, backing up... NOT going to require ssh-keys and will continue to allow user to provide a password where commands need it... Just will change not to show in the ps commands, back to the basic issue in the JIRA... |
| Comment by Todd Stoffel (Inactive) [ 2020-04-15 ] |
|
OAM is being deprecated and replaced by an enhanced API and the MaxScale orchestration project. |