[
https://issues.apache.org/jira/browse/WHIRR-499?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13198841#comment-13198841
]
Ashish Paliwal commented on WHIRR-499:
--------------------------------------
Either way is fine. I am just worried on a scenario where production logs may
be handed over for debugging, and this may expose a production cluster, which
otherwise is know only to Ops team.
> Avoid logging private key in logs
> ---------------------------------
>
> Key: WHIRR-499
> URL: https://issues.apache.org/jira/browse/WHIRR-499
> Project: Whirr
> Issue Type: Improvement
> Affects Versions: 0.7.0
> Environment: All
> Reporter: Ashish Paliwal
> Priority: Minor
>
> whirr.log file has private key logged for the User created. This could
> potential security threat, if logs are shared for debugging purposes.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
