Project

General

Profile

Bug #56

The hda database's password is hardcoded into scripts so, changing it breaks things badly

Added by rgmhtt over 12 years ago. Updated over 11 years ago.

Status:
Closed
Priority:
High
Assignee:
Category:
-
Target version:
-
Start date:
03/12/2009
Due date:
% Done:

0%


Description

Remove all references to the password for demo_development database from all scripts, e.g. /usr/bin/hdactl

Minimually created a password file that is read and the password is pulled from there. This way a user can change their database's password and reduce their attack exposure.


Related issues

Related to platform - Feature #41: the platform should not be using the root mysql user and password Closed 02/21/2009

History

#1 Updated by cpg over 12 years ago

  • Assignee set to cpg

would like to fix this for the f10 release. here is the strategy:

- make a default root/password for mysql
- make a separate user/password just for the platform
- use the user/password

in the future we may need to give good privileges to the platform user, to be able to create DBs, even if the main root password is changed by users, which some will want to do.

#2 Updated by gmw over 12 years ago

  • Priority changed from High to Normal

#3 Updated by gmw over 12 years ago

  • Priority changed from Normal to Medium

#4 Updated by cpg almost 12 years ago

  • Subject changed from The hda database's password is hardcoded into scripts so it cannot be changed to The hda database's password is hardcoded into scripts so, changing it breaks things badly
  • Priority changed from Medium to High

this is slated for the next release, F11 and Ubuntu

#5 Updated by jbinner almost 12 years ago

Have updated my password for MySQL at:
/var/hda/platform/html/config/database.yml

also changed in phpmyadmin to same password as above.

After doing this, app installs for NUMEROUS apps fails. tried Scientific calc, and others. per forum entry, asked me to post my results here over time. being as this breaks app install, I am going back standard password.

#6 Updated by cpg almost 12 years ago

sorry, the place to change is /var/hda/platform/html/config/database.yml

for the platform. i guess you figured it out.

other places this needs to be changed:

  • /usr/bin/hda-create-db-and-user
  • /usr/bin/hdactl
    (line 146, no less)

#7 Updated by cpg over 11 years ago

  • Status changed from New to Closed

fixed in the latest repo

Also available in: Atom