[#MDEV-27833] mysql_secure_installation didn't disable unix

[MDEV-27833] mysql_secure_installation didn't disable unix_socket authentication Created: 2022-02-14 Updated: 2022-02-15 Resolved: 2022-02-15
Status:	Closed
Project:	MariaDB Server
Component/s:	Scripts & Clients
Affects Version/s:	10.4, 10.5, 10.6, 10.7, 10.8, 10.9
Fix Version/s:	N/A

Type:

Bug

Priority:

Major

Reporter:

Ali Salam

Assignee:

Sergei Golubchik

Resolution:

Not a Bug

Votes:

Labels:

None

Description

Unix_socket authentication has been installed and enabled by default since MariaDB 10.4.3, and when run mysql_secure_installation, we still get the question "Enable unix_socket authentication? [Y/n]"

I think the question must be changed to "Disable unix_socket authentication? [Y/n]" or at least when press n instead of skipping, the script remove unix_auth from the root user.

https://github.com/MariaDB/server/blob/b5852ffbeebc3000982988383daeefb0549e058a/scripts/mysql_secure_installation.sh#L439

Comments

Comment by Sergei Golubchik [ 2022-02-15 ]

This is intentional. The script goal is not to make arbitrary changes in the mariadb configuration, but to make it more secure. Enabling unix_socket is a step toward that goal.

Any other changes one may want to do — they can be done without mysql_secure_installation script.

Generated at Thu Feb 08 09:55:56 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[MDEV-27833] mysql_secure_installation didn't disable unix_socket authentication Created: 2022-02-14 Updated: 2022-02-15 Resolved: 2022-02-15