The hda database's password is hardcoded into scripts so, changing it breaks things badly
Remove all references to the password for demo_development database from all scripts, e.g. /usr/bin/hdactl
Minimually created a password file that is read and the password is pulled from there. This way a user can change their database's password and reduce their attack exposure.
#1 Updated by cpg over 13 years ago
- Assignee set to cpg
would like to fix this for the f10 release. here is the strategy:
- make a default root/password for mysql
- make a separate user/password just for the platform
- use the user/password
in the future we may need to give good privileges to the platform user, to be able to create DBs, even if the main root password is changed by users, which some will want to do.
#4 Updated by cpg almost 13 years ago
- Subject changed from The hda database's password is hardcoded into scripts so it cannot be changed to The hda database's password is hardcoded into scripts so, changing it breaks things badly
- Priority changed from Medium to High
this is slated for the next release, F11 and Ubuntu
#5 Updated by jbinner almost 13 years ago
Have updated my password for MySQL at:
also changed in phpmyadmin to same password as above.
After doing this, app installs for NUMEROUS apps fails. tried Scientific calc, and others. per forum entry, asked me to post my results here over time. being as this breaks app install, I am going back standard password.
Also available in: Atom