Buy Percona ServicesBuy Now!

Extending the secure-file-priv server option

Percona Server has extended secure-file-priv server option. When used with no argument, the LOAD_FILE() function will always return NULL. The LOAD DATA INFILE and SELECT INTO OUTFILE statements will fail with the following error: "The MySQL server is running with the --secure-file-priv option so it cannot execute this statement". LOAD DATA LOCAL INFILE is not affected by the --secure-file-priv option and will still work when it’s used without an argument.

In Percona Server 5.5.53-38.4 empty secure-file-priv became an alias for NULL value: both disable LOAD_FILE(), LOAD DATA INFILE, and SELECT INTO OUTFILE. With this change it is no longer possible to disable security checks by omitting the option as that would take the default value (/var/lib/mysql-files/ for .deb and .rpm and NULL for .tar.gz packages. Instead, --secure-file-priv='' (or =/) should be used.

Version Specific Information

System Variables

variable secure-file-priv
Command Line:No
Config File:Yes
Variable Type:String
Default Value:/var/lib/mysql-files/ - for .deb and .rpm packages
Default Value:NULL - for .tar.gz packages
This documentation is developed in Launchpad as part of the Percona Server 5.5.
If you spotted inaccuracies, errors, don't understand it or you think something is missing or should be improved, please file a bug.
Visit Percona Store

General Inquiries

For general inquiries, please send us your question and someone will contact you.