Bug 1064278

Summary: Ovirt log show the SAM ProxyPassword in plaintext
Product: Red Hat Enterprise Virtualization Manager Reporter: Fabian Deutsch <fdeutsch>
Component: ovirt-nodeAssignee: Fabian Deutsch <fdeutsch>
Status: CLOSED ERRATA QA Contact: Virtualization Bugs <virt-bugs>
Severity: urgent Docs Contact:
Priority: urgent    
Version: 3.5.0CC: bsarathy, cpelland, cshao, ecohen, fdeutsch, gklein, gouyang, hadong, huiwa, iheim, jboggs, leiwang, ovirt-maint, pmatouse, rbalakri, rbarry, yaniwang, ycui
Target Milestone: ---Keywords: Regression
Target Release: 3.5.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: node
Fixed In Version: rhev-hypervisor6-6.6-20141218.0.iso rhev-hypervisor7-7.0-20141218.0.iso Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 971235 Environment:
Last Closed: 2015-02-11 20:52:32 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Node RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1123329, 1142923, 1156165    

Comment 9 wanghui 2015-01-21 03:03:22 UTC 
Test version:
rhev-hypervisor6-6.6-20150114.0
ovirt-node-3.2.1-4.el6.noarch

Test step:
1. Install rhev-hypervisor6-6.6-20150114.0
2. Configure network
3. Register to SAM using proxy server with password required
4. Check the /var/log/ovirt-node.log file

Test result:
1. After step4, it record the register action as follows.
2015-01-21 02:55:38,085       INFO ['/usr/sbin/subscription-manager', 'register', '--username', 'admin', '--password', 'XXXXXXX', '--proxy', '10.66.11.225:3128', '--proxyuser', 'rhevh', '--proxypassword', 'XXXXXXX', '--force']

Test summary:
1. Now the password and proxypassword are marked as "XXXXXXX". So this issue is fixed in rhev-hypervisor6-6.6-20150114.0 now. Change the status from ON_QA to Verified.
Comment 11 errata-xmlrpc 2015-02-11 20:52:32 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2015-0160.html