wsrep_sst_method=xtrabackup : issue

How do I hide wsrep_sst_auth details from being readable from a ps.

I have found a rather annoying security issue with using. wsrep_sst_method=xtrabackup. Is there anyway of masking this so it is not readable from a ps or by reading the logs?

I filed a bug: [url][/url] to address this issue.

There’s also some discussion about putting your xtrabackup password in a file only xtrabackup reads: [url][/url].

many thanks, I think an option for it to use -f configfile would suit my needs as this could be .my.cnf file,as this would hide it from the ps. As this all hooks into the start/stop, how could I install a workaround?