Bug #56
The hda database's password is hardcoded into scripts so, changing it breaks things badly
0%
Description
Remove all references to the password for demo_development database from all scripts, e.g. /usr/bin/hdactl
Minimually created a password file that is read and the password is pulled from there. This way a user can change their database's password and reduce their attack exposure.
Related issues
History
#1 Updated by cpg about 12 years ago
- Assignee set to cpg
would like to fix this for the f10 release. here is the strategy:
- make a default root/password for mysql
- make a separate user/password just for the platform
- use the user/password
in the future we may need to give good privileges to the platform user, to be able to create DBs, even if the main root password is changed by users, which some will want to do.
#2 Updated by gmw about 12 years ago
- Priority changed from High to Normal
#3 Updated by gmw about 12 years ago
- Priority changed from Normal to Medium
#4 Updated by cpg over 11 years ago
- Subject changed from The hda database's password is hardcoded into scripts so it cannot be changed to The hda database's password is hardcoded into scripts so, changing it breaks things badly
- Priority changed from Medium to High
this is slated for the next release, F11 and Ubuntu
#5 Updated by jbinner over 11 years ago
Have updated my password for MySQL at:
/var/hda/platform/html/config/database.yml
also changed in phpmyadmin to same password as above.
After doing this, app installs for NUMEROUS apps fails. tried Scientific calc, and others. per forum entry, asked me to post my results here over time. being as this breaks app install, I am going back standard password.
#6 Updated by cpg over 11 years ago
sorry, the place to change is /var/hda/platform/html/config/database.yml
for the platform. i guess you figured it out.
other places this needs to be changed:
/usr/bin/hda-create-db-and-user
/usr/bin/hdactl
(line 146, no less)
Also available in: Atom