What are the special security requirements for using stored procedures and functions together with replication?

MySQLMySQLi Database

Actually, a MySQL slave server has the authority to execute any statement read from a master's MySQL server binary log, hence some special security constraints exist for using stored functions with replication. If replication or binary logging in general (for the purpose of point-in-time recovery) is active, then MySQL DBAs have two security options open to them −

Option of SUPER privilege

Any user wishing to create stored functions must be granted the SUPER privilege by DBA.

log_bin_trust_function_creators mode

Actually, log_bin_trust_function_creators enables anyone with the standard CREATE ROUTINE privilege to create stored functions hence a DBA can set the log_bin_trust_function_creators system variable to 1.

Published on 21-Feb-2018 15:33:10