Hi all,
I'm setting up an XtraDB cluster and everything works fine, but what stops someone from just saying they are a node and receiving all the data?
I have added 2 nodes and an arbitrator but don't think I had to do anything in terms of auth for the arbitrator
If I add another cluster node there doesn't seem to be any type of authentication
Is it done by the list of IPs on the other nodes?
Or is it something to do with wsrep_sst_auth?
I thought that wsrep_sst_auth was just for connecting to the local machine though?
Or are we supposed to secure it via iptables or something and there is no authentication?