maria-developers team mailing list archive

Thread
Date

Re: To Sergei:

To: Roberto Spadim <roberto@xxxxxxxxxxxxx>
From: Sergei Golubchik <serg@xxxxxxxxxxxx>
Date: Thu, 16 May 2013 18:03:21 +0200
Cc: maria-developers@xxxxxxxxxxxxxxxxxxx
In-reply-to: <CAH3kUhHWhnW82mo66CZNesmWD9JMaunF71cf9HT1Ev1G+6OA7A@mail.gmail.com>
User-agent: Mutt/1.5.21 (2010-09-15)

Hi, Roberto!

On May 16, Roberto Spadim wrote:
> just some questions about dialog_example.c, just to check if i understood
> the source
> 
> the three_attempts, request 3 times the password, if it's all wrong
> return CR_ERROR, and user is 'disconnected'?

Yes.

> the two_questions, request the password, if wrong, disconnect
> with CR_ERROR, send the second question, and if it's not == to "yes, of
> course", return CR_ERROR, else, user is connected?

Yes.

> the info->auth_string, is the password of mysql.users table?

No, in the

  CREATE USER xxx IDENTIFIED WITH yyy USING zzz;

auth_string is the "zzz" part.

> there's more examples where i could get the user, and check some value
> inside a mysql.* table?

Check the our knowledge base, MySQL manual, and the documentation in the
include/mysql/plugin_auth*.h files

> i'm thinking about OTP passwords like google auth

See also my talk on the MySQL UC 2010, that includes the code for the
S/Key authentication plugin (S/Key is an old one-time passwod system):
http://en.oreilly.com/mysql2010/public/schedule/detail/13143

And this my blog post, that shows how to use Google Authenticator with
MariaDB: http://blog.mariadb.org/security-with-two-step-verification/

Regards,
Sergei

Follow ups

Re: To Sergei:
From: Roberto Spadim, 2013-05-16

References

To Sergei:
From: Samarth Mathur, 2013-05-16
Re: To Sergei:
From: Sergei Golubchik, 2013-05-16
Re: To Sergei:
From: Roberto Spadim, 2013-05-16