Not the answer you need?
Register and ask your own question!

Password stored in world-readable plain text file

So I've got the pmm-client installed on a handful of database servers. Love the statistics that it reports.

When I used pmm-admin to connect to add the mysql plugin, it asked for credentials. I provided the mysql root username & password on the command line (that seemed dirty). I see that the password is saved in /etc/init/pmm-mysql-metrics-42002.conf, which is world-readable. This seems super dirty.

I suspect I'm not configuring something right here. Is there a way to pass a --login-path? Or some other way to authenticate to the mysql server? Should I be setting up a "pmm" user with limited permissions?

I don't see this in the documentation, but feel free to send me in the right direction if I missed something.

Thanks

Norman

Comments

Sign In or Register to comment.

MySQL, InnoDB, MariaDB and MongoDB are trademarks of their respective owners.
Copyright ©2005 - 2020 Percona LLC. All rights reserved.