check if a password column exists and only then check contents

[rndmh3ro]

Signed-off-by: Sebastian Gumprich github@gumpri.ch

Fixes #52

[micheelengronne]

Sounds good. I have a more general question though. Is it still relevant to keep compatibility for 5 years old deprecated behaviour ? mysql 5.7.6 appeared in 2015, if a system is still running with something older, I think security checks would be useless and the first thing to do would be to update.

[rndmh3ro]

You're right that we should not support deprecated behavior. However MariaDB still uses the password-column so we still need to check it. Do you have a better idea how to achieve this?

Here are the versions our supported OS'es use:

• Debian 9 - MariaDB 10.1.45 (https://packages.debian.org/search?keywords=mariadb-server)
• Debian 10 - MariaDB 10.3.23 (https://packages.debian.org/search?keywords=mariadb-server)
• Ubuntu 16.04 - 5.7.31 (https://packages.ubuntu.com/xenial/mysql-server)
• Ubuntu 18.04 - 5.7.31 (https://packages.ubuntu.com/bionic/mysql-server-5.7)
• Ubuntu 20.04 - 8.0.21 (https://packages.ubuntu.com/focal/mysql-server)
• Centos 7 - mariadb-server-5.5.65
• Centos 8 - mariadb-server-10.3.17

[micheelengronne]

If MariaDB still needs it, the checks is usefull then.