Project

General

Profile

Bug #13657

Script rudder-support-info does not mask credentials

Added by Janos Mattyasovszky about 1 year ago. Updated 6 months ago.

Status:
Released
Priority:
N/A
Category:
Agent
Target version:
Severity:
Critical - prevents main use of Rudder | no workaround | data loss | security
User visibility:
Operational - other Techniques | Rudder settings | Plugins
Effort required:
Very Small
Priority:
95

Description

Following things should be anonymized:

- rudder.auth.ldap.connection.bind.password in ./rudder/rudder-web.properties


Subtasks

Bug #14829: Error in parent ticket - missing Digest/SHA.pm as a dependency on centosReleasedNicolas CHARLESActions

Associated revisions

Revision db3c1a1c (diff)
Added by Nicolas CHARLES 7 months ago

Fixes #13657: Script rudder-support-info does not mask credentials

History

#1

Updated by Alexis MOUSSET about 1 year ago

  • Category set to Agent
#2

Updated by François ARMAND about 1 year ago

  • Effort required set to Very Small
#3

Updated by Benoît PECCATTE 7 months ago

  • Severity set to Critical - prevents main use of Rudder | no workaround | data loss | security
  • User visibility set to Operational - other Techniques | Rudder settings | Plugins
  • Priority changed from 0 to 96
#4

Updated by François ARMAND 7 months ago

  • Assignee set to Nicolas CHARLES
#5

Updated by Nicolas CHARLES 7 months ago

we should anonymise:
  • syslog/rsyslog.d/rudder.conf : anonymise password in line that contains :ompgsql:ip,db, user,PGPW;RudderReportsFormat
  • rudder/rudder-web.properties , PGPW and LDAPPW
  • rudder/inventory-web.properties : LDAPPW

Idealy, if we could anonymize it in a way taht let us detect if values are the same, it would be great for debuuging

#6

Updated by Nicolas CHARLES 7 months ago

  • Target version set to 5.0.10
#7

Updated by Nicolas CHARLES 7 months ago

  • Status changed from New to In progress
#9

Updated by Nicolas CHARLES 7 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Nicolas CHARLES to Benoît PECCATTE
  • Pull Request set to https://github.com/Normation/rudder-packages/pull/1857
#10

Updated by Nicolas CHARLES 7 months ago

  • Status changed from Pending technical review to Pending release
#11

Updated by Vincent MEMBRÉ 6 months ago

  • Status changed from Pending release to Released
  • Priority changed from 96 to 95

This bug has been fixed in Rudder 5.0.10 which was released today.

Also available in: Atom PDF