Firewall filter improvements
(MXS-622)
|
|
| Status: | Closed |
| Project: | MariaDB MaxScale |
| Component/s: | dbfwfilter |
| Affects Version/s: | None |
| Fix Version/s: | 2.0.0 |
| Type: | Sub-Task | Priority: | Major |
| Reporter: | Dipti Joshi (Inactive) | Assignee: | markus makela |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Sprint: | 2017-25 |
| Description |
|
Add ability to blacklist or white list DROP, CREATE, GRANT, USE queries |
| Comments |
| Comment by Dipti Joshi (Inactive) [ 2015-07-10 ] |
|
markus makela Do we have estimate of the effort for this task ? |
| Comment by Johan Wikman [ 2016-03-08 ] |
|
This functionality can be achieved using the regular expression based filter, so moving this for now to 1.5. But it needs to be assessed whether specific functionality for dealing with DROP, CREATE, GRANT and USE really is needed. |
| Comment by Dipti Joshi (Inactive) [ 2016-03-08 ] |
|
johan.wikman Ability to block some one from doing DROP, CREATE, GRANT and USE is really needed. A hacker can use DROP to entirely drop a table, USE to access a database that the user should not be able to access, GRANT to get access to tables and database that the user should not be able to and CREATE to create a new table and then load data to over load the database. |
[MXS-194]