CLAassistant
commented
1 year ago
All committers have signed the CLA.
Closed chris-fj closed 1 year ago
CLAassistant
commented
1 year ago
All committers have signed the CLA.
chris-fj
commented
1 year ago This PR fixes https://github.com/photoprism/photoprism-docs/issues/148
lastzero
commented
1 year ago Thank you very much for your suggestion! I would argue that the insecurity of the command is not much of a problem for home users if the password is "insecure" anyway, i.e. easy to guess. All the security in this case comes from the fact that the database server is not directly accessible from the home network, let alone over the public Internet. Of course, if this is not the case, you cannot work this way, as you should take additional security measures.
I'll close this now that I've updated the docs based on your feedback. If this still isn't acceptable to you, don't hesitate to let me know.
Used a safer way to migrate from SQLite to MariaDB, that doesn't require your db password to be passed around as a parameter but instead, it's taken from stdin.