Project

General

Profile

Bug #22284

ceph-volume - auth key logged to journal/syslog

Added by Alwin Antreich over 6 years ago. Updated over 6 years ago.

Status:
Duplicate
Priority:
Normal
Assignee:
-
Target version:
-
% Done:

0%

Source:
Tags:
Backport:
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):

Description

As a side effect of running commands with sudo (#22282), all commands are logged to journal/syslog. Revealling the auth key of the osd.

Nov 30 14:16:19 sumi2 sudo[12557]:     root : TTY=pts/0 ; PWD=/root ; USER=root ; COMMAND=/usr/bin/ceph-osd --cluster ceph --osd-objectstore bluestore --mkfs -i 17 --monmap /var/lib/ceph/osd/ceph-17/activate.monmap --key AQCiBCBaGE06ExAAIWpHOgpAjhQneHdqhNEfyA== --osd-data /var/lib/ceph/osd/ceph-17/ --osd-uuid d0e1b24a-f780-4b74-b456-fc6d37236c6d --setuser ceph --setgroup ceph
Nov 30 14:16:21 sumi2 sudo[12692]:     root : TTY=pts/0 ; PWD=/root ; USER=root ; COMMAND=/bin/systemctl start ceph-osd@17
Nov 30 14:16:21 sumi2 ceph-osd[12700]: starting osd.17 at - osd_data /var/lib/ceph/osd/ceph-17 /var/lib/ceph/osd/ceph-17/journal

History

#1 Updated by Alwin Antreich over 6 years ago

Dublicate of #22283

#2 Updated by Patrick Donnelly over 6 years ago

  • Project changed from Ceph to ceph-volume

#3 Updated by Andrew Schoen over 6 years ago

  • Status changed from New to Duplicate

Also available in: Atom PDF