[#MDEV-30110] Update mariadb-secure-installation to take into account unix

[MDEV-30110] Update mariadb-secure-installation to take into account unix_socket authentication Created: 2022-11-28 Updated: 2022-11-28
Status:	Open
Project:	MariaDB Server
Component/s:	Scripts & Clients
Affects Version/s:	10.4, 10.5, 10.6, 10.7, 10.8, 10.9, 10.10, 10.11
Fix Version/s:	None

Type:

Bug

Priority:

Major

Reporter:

Ian Gilfillan

Assignee:

Unassigned

Resolution:

Unresolved

Votes:

Labels:

None

Issue Links:

Relates
relates to	MDEV-26593	Replace mysql_secure_installation wit...	Open
relates to	MDEV-28932	Clean up and document mysql-secure-in...	Open

Description

This script (usually referred to as mysql_secure_installation) is heavily used based on existing guidance/tutorials.

However, the flow makes no sense when Unix socket authentication is applied (as it is by default since 10.4). It's a confusing experience for users and should be fixed.

Suggestions:

If unix_socket_authentication is enabled:
1) Clarify that running the script is mostly unnecessary, perhaps using the text at the top of https://mariadb.com/kb/en/mysql_secure_installation/, and asking whether they are sure they wish to continue.

2) Remove the question "Switch to unix_socket authentication [Y/n]"

3) Remove the question "Change the root password? [Y/n]"

See also discussion on https://mariadb.zulipchat.com/#narrow/stream/118759-general/topic/'mariadb-secure-installation'.20script.20-.20root.20access where 2) and 3) were suggested by Red Hat's Michal Schorm, as well as MDEV-26593, which proposed solving the issue by removing the script entirely.

Generated at Thu Feb 08 10:13:44 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[MDEV-30110] Update mariadb-secure-installation to take into account unix_socket authentication Created: 2022-11-28 Updated: 2022-11-28