After a fresh installation of MariaDB 10.6.8, the service listens on all interfaces, although bind-address = 127.0.0.1 is set in /usr/local/etc/mysql/conf.d/server.cnf. After some research, the problem is in the file /usr/local/etc/mysql/conf.d/wsrep.cnf which overrides the settings in /usr/local/etc/mysql/conf.d/server.cnf. In this file bind-address is set to 0.0.0.0 which overrides the settings of the server config. This should be deactivated by default, otherwise it will negatively affect the pure server configuration and thus possibly impair security.
fix Summary, assign to maintainer.
This issue did not exist in: databases/mariadb104-server databases/mariadb105-server as conf.d/wsrep.cnf ins not installed. Only conf.d/wsrep.cnf.sample exists there.
Created attachment 240374 [details] Patch to change installation options for wsrep.cnf.sample In databases/mariadb106-server, the @sample macro is added to wsrep.cnf.sample, so wsrep.cnf is also created during installation. mariadb104-server/pkg-plist: %%WSREP%%%%ETCDIR%%/conf.d/wsrep.cnf.sample mariadb105-server/pkg-plist: %%WSREP%%%%ETCDIR%%/conf.d/wsrep.cnf.sample mariadb106-server/pkg-plist: (commit: fb3d4f1) %%WSREP%%@sample %%ETCDIR%%/conf.d/wsrep.cnf.sample I have created a patch to prevent wsrep.cnf from being installed by default. (This is the same behavior as in previous versions.)