測試資料:
INSERT INTO `test` (`user`, `pswd`) VALUES ('test', 'ABcd+1234');一般常見做法
SELECT `user` FROM `test` WHERE `user`='test' and `pswd`=sha1('ABcd+1234')較安全做法,但是會增加DB CPU的功耗!
SELECT `user` FROM `test` WHERE `user`='test' and sha1(CONCAT(`pswd`,9999))=sha1(CONCAT(sha1('ABcd+1234'),9999))先用ssh以管理者身份登入Synology Nas.
接著輸入下列指令,就可以修改root密碼.
sudo synouser --setpw root [PASSWORD]
並設定允許root登入
sudo -i
echo "PermitRootLogin yes" >> /etc/ssh/sshd_config
cat /etc/ssh/sshd_config | grep "PermitRootLogin yes"
重啟ssh service
sudo synoservicectl --restart sshd
如果重啟很久,可以到Synology控制台中,手動重啟SSH服務
環境變數:
PASSWORD="1234567890"
NAME="db"
SERVICE="${NAME}-mariadb"
NAMESPACE="default"
儲存裝置為nfs
helm install \
--namespace ${NAMESPACE} \
--name ${NAME} stable/mariadb \
--set slave.replicas=3 \
--set rootUser.password=replicator \
--set replication.user="${PASSWORD}" \
--set replication.password="${PASSWORD}" \
--set master.persistence.storageClass=managed-nfs-storage \
--set slave.persistence.storageClass=managed-nfs-storage
允許root@%登入(注意:密碼不能隨意變動)
kubectl exec -it -n ${NAMESPACE} ${SERVICE}-master-0 -- mysql -uroot -p${PASSWORD} -e "grant all privileges on *.* to 'root' @'%' identified by '${PASSWORD}'; FLUSH PRIVILEGES;"
變更密碼正確方式:
NEW_PASSWORD="0987654321"
PASSWORD=$(kubectl get secret -n ${NAMESPACE} ${SERVICE} -o jsonpath="{.data.mariadb-root-password}" | base64 --decode)
echo "Password: ${PASSWORD}"
helm upgrade ${NAME} stable/mariadb --set rootUser.password=${NEW_PASSWORD}