[MDEV-20757] wsrep_ss_auth password encryption Created: 2019-10-05 Updated: 2023-07-31 |
|
| Status: | Open |
| Project: | MariaDB Server |
| Component/s: | Galera |
| Fix Version/s: | None |
| Type: | Task | Priority: | Minor |
| Reporter: | Sylvain ARBAUDIE | Assignee: | Ralf Gebhardt |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Issue Links: |
|
||||||||
| Description |
|
As oftoday, wsrep_sst_auth is a set of credentials in clear text. Even tho, we can still restrict the system ACL to the bare minimum, even tho the user is set with limited privileges (and only from localhost), this is not a best practice security wise. it would be great if we could store a hash in the way of maxscale. |