Project

General

Profile

Actions
Copy link

Bug #52940

closed

cephadm: cephadm can log sensitive information by logging all command line commands

Added by Adam King over 2 years ago. Updated over 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Adam King
Category:
-
Target version:
-
% Done:

0%

Source:
Tags:
Backport:
pacific
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
43552
Crash signature (v1):
Crash signature (v2):

Description

In the "call" function within cephadm, we log whatever command is provided to us. Sometimes, these command can contain things that should not be logged. For example, if the command is to login to a registry with podman or docker the user's registry password will be logged.

Actions
Copy link
 #1

Updated by Adam King over 2 years ago

  • Pull request ID set to 43552
Actions
Copy link
 #2

Updated by Adam King over 2 years ago

  • Status changed from In Progress to Resolved
Actions
Copy link

Also available in: Atom PDF