From 01619614d4b16425deeb107aa41f783f0e118d12 Mon Sep 17 00:00:00 2001 From: Benedikt Koeppel Date: Sat, 18 Feb 2012 21:04:25 +0100 Subject: [PATCH] splitted manifest up in manifest and gencode-remote --- conf/type/__mysql_server/gencode-remote | 51 +++++++++++++++++++++++++ conf/type/__mysql_server/manifest | 27 ------------- 2 files changed, 51 insertions(+), 27 deletions(-) create mode 100755 conf/type/__mysql_server/gencode-remote diff --git a/conf/type/__mysql_server/gencode-remote b/conf/type/__mysql_server/gencode-remote new file mode 100755 index 00000000..782a4cb6 --- /dev/null +++ b/conf/type/__mysql_server/gencode-remote @@ -0,0 +1,51 @@ +#!/bin/sh +# +# 2012 Benedikt Koeppel (code@benediktkoeppel.ch) +# +# This file is part of cdist. +# +# cdist is free software: you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation, either version 3 of the License, or +# (at your option) any later version. +# +# cdist is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with cdist. If not, see . +# +# + +# store the root password in /root/.my.cnf so that processes can connect +# to the database without requiring a passwort input +rootpassword="$(cat "$__object/parameter/password")" + +# set root password +mysqladmin -u root password $rootpassword + +# remove anonymous users +mysql -u root -p <<-EOF + DELETE FROM mysql.user WHERE User=''; +EOF + +# remove remote-access for root +mysql -u root -p <<-EOF + DELETE FROM mysql.user WHERE User='root' AND Host!='localhost'; +EOF + +# remove test database +mysql -u root -p <<-EOF + DROP DATABASE test; +EOF +mysql -u root -p <<-EOF + DELETE FROM mysql.db WHERE Db='test' OR Db='test\_%' +EOF + +# flush privileges +mysql -u root -p <<-EOF + FLUSH PRIVILEGES; +EOF + diff --git a/conf/type/__mysql_server/manifest b/conf/type/__mysql_server/manifest index 88a585da..a9d5127c 100755 --- a/conf/type/__mysql_server/manifest +++ b/conf/type/__mysql_server/manifest @@ -28,30 +28,3 @@ rootpassword="$(cat "$__object/parameter/password")" __file "/root/.my.cnf" --group root --user root --mode 600 --source "$__type/files/my.cnf" require="__file/root/.my.cnf" \ __addifnosuchline "/root/.my.cnf" --line "password=$rootpassword" - -# set root password -mysqladmin -u root password $rootpassword - -# remove anonymous users -mysql -u root -p <<-EOF - DELETE FROM mysql.user WHERE User=''; -EOF - -# remove remote-access for root -mysql -u root -p <<-EOF - DELETE FROM mysql.user WHERE User='root' AND Host!='localhost'; -EOF - -# remove test database -mysql -u root -p <<-EOF - DROP DATABASE test; -EOF -mysql -u root -p <<-EOF - DELETE FROM mysql.db WHERE Db='test' OR Db='test\_%' -EOF - -# flush privileges -mysql -u root -p <<-EOF - FLUSH PRIVILEGES; -EOF -