ourdelta-developers team mailing list archive

Thread
Date

[Bug 352840] Re: INNODB_BUFFER_POOL_CONTENT privacy issue

To: ourdelta-developers@xxxxxxxxxxxxxxxxxxx
From: Arjen Lentz <arjen@xxxxxxxxxxxxx>
Date: Mon, 20 Jul 2009 10:09:10 -0000
Reply-to: Bug 352840 <352840@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Hoi Gertjan - you make a valid point, but the approach and attitude of
your message sucks. You have absolutely no right to speak to anyone in
that manner, particularly considering that you are talking with
volunteers. Your feedback is most appreciated, if normal decency is
observed. Met dank.

I think what was omitted here is a link to the uplink source of this
particular patch, as its origin is one of the Percona patches. I'll see
if I can make that happen.

** Also affects: percona-patches
   Importance: Undecided
       Status: New

-- 
INNODB_BUFFER_POOL_CONTENT privacy issue
https://bugs.launchpad.net/bugs/352840
You received this bug notification because you are a member of OurDelta-
developers, which is the registrant for OurDelta.

Status in OurDelta - Builds for MySQL: Confirmed
Status in Patches for MySQL by Percona: New

Bug description:
INNODB_BUFFER_POOL_CONTENT does not prune rows returned in terms of what databases/tables the requesting user has access to. In many environments it is unacceptable for user to have access to data about the names of all database and table that exist on the instance.

I suggest that access to INNODB_BUFFER_POOL_CONTENT be restricted to user that have the SUPER privilege.

References

[Bug 352840] [NEW] INNODB_BUFFER_POOL_CONTENT privacy issue
From: Wultsch, 2009-04-01