debian-sys-maint password is unnecessary attack surface
Bug #1554032 reported by
Robie Basak
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mysql-5.6 (Ubuntu) |
Triaged
|
Low
|
Unassigned |
Bug Description
Now that we have auth_socket, we should stop using passwords for debian-sys-maint and use auth_socket authentication instead. Then there is no secret for an attacker to guess.
Changed in mysql-5.6 (Ubuntu): | |
status: | New → Triaged |
To post a comment you must log in.