debian-sys-maint password is unnecessary attack surface
Bug #1554032 reported by
Robie Basak
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| mysql-5.6 (Ubuntu) |
Triaged
|
Low
|
Unassigned | ||
Bug Description
Now that we have auth_socket, we should stop using passwords for debian-sys-maint and use auth_socket authentication instead. Then there is no secret for an attacker to guess.
| Changed in mysql-5.6 (Ubuntu): | |
| status: | New → Triaged |
To post a comment you must log in.
