ourdelta-developers team mailing list archive

Thread
Date

[Bug 352840] Re: INNODB_BUFFER_POOL_CONTENT privacy issue

To: ourdelta-developers@xxxxxxxxxxxxxxxxxxx
From: Gertjan Oude Lohuis <gertjan@xxxxxxxxxxxxx>
Date: Mon, 20 Jul 2009 10:31:59 -0000
Reply-to: Bug 352840 <352840@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Sorry, you are right. But please do acknowledge that people who take the
time to isolate and report bugs also do this voluntarily. Having them
wait more than three months for an answer is not very friendly. I think
"reasonable request. should be fixed." shouldn't have taken longer than
two minutes to decide and write, and that is a hell of a lot more than
no reply at all. ;-)

But we do appreciate your work deeply, so I appologize for the tone of
my comment.

-- 
INNODB_BUFFER_POOL_CONTENT privacy issue
https://bugs.launchpad.net/bugs/352840
You received this bug notification because you are a member of OurDelta-
developers, which is the registrant for OurDelta.

Status in OurDelta - Builds for MySQL: Confirmed
Status in Patches for MySQL by Percona: New

Bug description:
INNODB_BUFFER_POOL_CONTENT does not prune rows returned in terms of what databases/tables the requesting user has access to. In many environments it is unacceptable for user to have access to data about the names of all database and table that exist on the instance.

I suggest that access to INNODB_BUFFER_POOL_CONTENT be restricted to user that have the SUPER privilege.

Follow ups

Re: [Bug 352840] Re: INNODB_BUFFER_POOL_CONTENT privacy issue
From: Arjen Lentz, 2009-07-20

References

[Bug 352840] [NEW] INNODB_BUFFER_POOL_CONTENT privacy issue
From: Wultsch, 2009-04-01