MDEV-14796 - debian: insecure root password is only if plugin is empty

Enumerate plugins that use password field.

MDEV-14796 - debian: insecure root password is only if plugin is empty
Enumerate plugins that use password field.
7e3c1e02 · Sergey Vojtovich · 1879b2b8 · 7e3c1e02
Commit 7e3c1e02 authored Jan 15, 2018 by Sergey Vojtovich
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

debian/additions/debian-start.inc.sh debian/additions/debian-start.inc.sh +1 -1

No files found.
--- a/debian/additions/debian-start.inc.sh
+++ b/debian/additions/debian-start.inc.sh
@@ -65,7 +65,7 @@ function check_root_accounts() {
  
  logger -p daemon.info -i -t$0 "Checking for insecure root accounts."

-  ret=$( echo "SELECT count(*) FROM mysql.user WHERE user='root' and password='' and plugin='';" | $MYSQL --skip-column-names )
+  ret=$( echo "SELECT count(*) FROM mysql.user WHERE user='root' and password='' and plugin in ('', 'mysql_native_password', 'mysql_old_password');" | $MYSQL --skip-column-names )
  if [ "$ret" -ne "0" ]; then
    logger -p daemon.warn -i -t$0 "WARNING: mysql.user contains $ret root accounts without password!"
  fi