Is there anyway to hide the plain text password in mysql.slave_master_info?

ipcmlr · November 3, 2021, 3:18pm

You can select * from mysql.slave_master_info and it show the password in plain text…

matthewb · November 3, 2021, 5:09pm

Hello @ipcmlr,
Yes, you can hide the password by including it in your START REPLICA command. For example,

START REPLICA USER='repUser' PASSWORD='fooPassword';

You may need to first RESET REPLICA ALL to clear out the data from the table and then re-run your CHANGE REPLICATION SOURCE TO ... to set the source hostname/port/position/etc.

Keep in mind that if replication breaks, or needs to be restarted for any reason, you must always provide the UN/PW as shown above. This is tradeoff between flexibility and security.

You could also configure a user with no password and force SSL connections for replication and authenticate using SSL certificates.

Topic		Replies	Views
Small query on "GRANT STATEMENT" Percona XtraBackup	2	533	March 19, 2013
Hide Password in Percona Config PMM 2.x	6	793	June 9, 2022
Percona 8.0.29 fresh install automation as slave Percona Server for MySQL 8.0 community , mysql , percona , new-release	1	881	October 9, 2022
Password stored in world-readable plain text file PMM 1.x	3	986	April 19, 2021
Errors after starting new slave server replication using Percona XtraBackup's backup Other MySQL® Questions	7	1482	February 25, 2015

Is there anyway to hide the plain text password in mysql.slave_master_info?

Related topics