[#MDEV-16009] mariabackup SST requires clear text password in xtrabackup.cnf

[MDEV-16009] mariabackup SST requires clear text password in xtrabackup.cnf Created: 2018-04-24 Updated: 2024-02-06
Status:	Open
Project:	MariaDB Server
Component/s:	Galera SST
Fix Version/s:	None

Type:

New Feature

Priority:

Major

Reporter:

Richard Lane

Assignee:

Seppo Jaakola

Resolution:

Unresolved

Votes:

Labels:

galera, sst

Issue Links:

Duplicate
is duplicated by	MDEV-31809	Automatic SST user account management	In Review
Relates
relates to	MDEV-31809	Automatic SST user account management	In Review

Description

When configuring mariabackup SST method for Galera in 10.2.13, you are required to put a clear text password in /etc/my.cnf.d/xtrabackup.cnf. Need a more secure way to provide authentication information to mariabackup SST method since clear text passwords in files are a major security violation.

Comments

Comment by Jan Lindström (Inactive) [ 2019-12-12 ]

Feature request.

Comment by Daniel Black [ 2023-10-13 ]

https://github.com/MariaDB/server/pull/2718 is a step in the direction of mitigating risk

Generated at Thu Feb 08 08:25:40 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[MDEV-16009] mariabackup SST requires clear text password in xtrabackup.cnf Created: 2018-04-24 Updated: 2024-02-06