MARIADB_RANDOM_ROOT_PASSWORD - much more random #357

grooverdan · 2021-03-12T05:10:34Z

With https://mariadb.com/kb/en/password-validation/#examples
it may be the case that the random root password fails
to meet the complexity requirements.

We take advantage that both bionic (for 10.2) and focal
onwards include pwgen-2.08 that included the added options
to be secure on multiple ways.

Though not necessary, take away a few characters in
realization that the scripting ability of our users
may not contain the basic escaping needed to process
this added security.

docker-entrypoint.sh

With https://mariadb.com/kb/en/password-validation/#examples it may be the case that the random root password fails to meet the complexity requirements. We take advantage that both bionic (for 10.2) and focal onwards include pwgen-2.08 that included the added options to be secure on multiple ways. Though not necessary, take away a few characters in realization that the scripting ability of our users may not contain the basic escaping needed to process this added security.

tianon reviewed Mar 12, 2021

View reviewed changes

docker-entrypoint.sh Outdated Show resolved Hide resolved

grooverdan force-pushed the password_complexity branch from 6b8f0a1 to ad1e335 Compare March 14, 2021 02:06

grooverdan merged commit bf06c07 into MariaDB:master Mar 14, 2021

grooverdan deleted the password_complexity branch March 14, 2021 22:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

MARIADB_RANDOM_ROOT_PASSWORD - much more random #357

MARIADB_RANDOM_ROOT_PASSWORD - much more random #357

grooverdan commented Mar 12, 2021

MARIADB_RANDOM_ROOT_PASSWORD - much more random #357

MARIADB_RANDOM_ROOT_PASSWORD - much more random #357

Conversation

grooverdan commented Mar 12, 2021