[jira] [Commented] (WHIRR-499) Avoid logging private key in logs

Andrei Savu (Commented) (JIRA) Thu, 02 Feb 2012 06:52:16 -0800

    [ 
https://issues.apache.org/jira/browse/WHIRR-499?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13198845#comment-13198845
 ]


Andrei Savu commented on WHIRR-499:
-----------------------------------

Good point. I think we can at least try to do a better job at keeping that file 
safe-to-be-shared and still display an warning that it may contain security 
sensitive data. 
                
> Avoid logging private key in logs
> ---------------------------------
>
>                 Key: WHIRR-499
>                 URL: https://issues.apache.org/jira/browse/WHIRR-499
>             Project: Whirr
>          Issue Type: Improvement
>    Affects Versions: 0.7.0
>         Environment: All
>            Reporter: Ashish Paliwal
>            Priority: Minor
>
> whirr.log file has private key logged for the User created. This could 
> potential security threat, if logs are shared for debugging purposes.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (WHIRR-499) Avoid logging private key in logs

Reply via email to