Your message dated Thu, 10 Nov 2016 13:49:11 +0200
with message-id
<cahj_tlcbe84w69rgv9j1bu2mp2_n1-zr8ukc87gadpzorjt...@mail.gmail.com>
and subject line Re: [debian-mysql] Bug#815599: Bug#815599:
mariadb-server-10.0: Postinstall script does not clear the
mysql-server/root_password_again field
has caused the Debian Bug report #815599,
regarding mariadb-server-10.0: Postinstall script does not clear the
mysql-server/root_password_again field
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
815599: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815599
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: mariadb-server-10.0
Version: 10.0.23-0+deb8u1
Severity: minor
Dear Maintainer,
While looking to preseed some Jessie systems, I noticed that the
mysql-server/root_password field had been cleared in the postinstall script,
however the mysql-server/root_password_again field had not been. Therefore, the
root password for the database, if not reset after installation, was available
in cleartext from debconf.
-- System Information:
Debian Release: 8.3
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/24 CPU cores)
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages mariadb-server-10.0 depends on:
ii adduser 3.113+nmu3
ii debconf [debconf-2.0] 1.5.56
ii libaio1 0.3.110-1
ii libc6 2.19-18+deb8u3
ii libdbi-perl 1.631-3+b1
ii libpam0g 1.1.8-3.1+deb8u1
ii libstdc++6 4.9.2-10
ii lsb-base 4.1+Debian13+nmu1
ii mariadb-client-10.0 10.0.23-0+deb8u1
ii mariadb-common 10.0.23-0+deb8u1
ii mariadb-server-core-10.0 10.0.23-0+deb8u1
ii passwd 1:4.2-3+deb8u1
ii perl 5.20.2-3+deb8u3
ii psmisc 22.21-2
ii zlib1g 1:1.2.8.dfsg-2+b1
Versions of packages mariadb-server-10.0 recommends:
ii libhtml-template-perl 2.95-1
Versions of packages mariadb-server-10.0 suggests:
ii bsd-mailx [mailx] 8.1.2-0.20141216cvs-2
pn mariadb-test <none>
pn tinyca <none>
-- debconf information:
* mysql-server/root_password_again: (password omitted)
* mysql-server/root_password: (password omitted)
mariadb-server/oneway_migration: true
mysql-server/password_mismatch:
mysql-server/no_upgrade_when_using_ndb:
mysql-server-10.0/postrm_remove_databases: false
mysql-server-10.0/nis_warning:
mariadb-server-10.0/really_downgrade: false
mysql-server/error_setting_password:
--- End Message ---
--- Begin Message ---
The mariadb-10.0 package has been using unix socket auth for a while.
I don't think this issue needs any further actions.
--- End Message ---
