Extending the secure-file-priv server option

Percona Server has extended secure-file-priv server option. When used with no argument, the LOAD_FILE() function will always return NULL. The LOAD DATA INFILE and SELECT INTO OUTFILE statements will fail with the following error: "The MySQL server is running with the --secure-file-priv option so it cannot execute this statement". LOAD DATA LOCAL INFILE is not affected by the --secure-file-priv option and will still work when it’s used without an argument.

In Percona Server 5.5.53-38.4 empty secure-file-priv became an alias for NULL value: both disable LOAD_FILE(), LOAD DATA INFILE, and SELECT INTO OUTFILE. With this change it is no longer possible to disable security checks by omitting the option as that would take the default value (/var/lib/mysql-files/ for .deb and .rpm and NULL for .tar.gz packages. Instead, --secure-file-priv='' (or =/) should be used.

Version Specific Information

System Variables

variable secure-file-priv
Command Line:No
Config File:Yes
Variable Type:String
Default Value:/var/lib/mysql-files/ - for .deb and .rpm packages
Default Value:NULL - for .tar.gz packages

Contact Us

For free technical help, visit the Percona Community Forum.
To report bugs or submit feature requests, open a JIRA ticket.
For paid support and managed or professional services, contact Percona Sales.