Bug 1417652
Summary: | The Java command line for Hawkular carries passwords when displaying process (ps) | |||
---|---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Jason Meyer <jmeyer> | |
Component: | Hawkular | Assignee: | Matt Wringe <mwringe> | |
Status: | CLOSED ERRATA | QA Contact: | Peng Li <penli> | |
Severity: | high | Docs Contact: | ||
Priority: | unspecified | |||
Version: | 3.2.0 | CC: | aos-bugs, jialiu, jokerman, lmeyer, mmccomas, mwringe, tdawson | |
Target Milestone: | --- | |||
Target Release: | 3.2.1 | |||
Hardware: | All | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: |
Cause:
The password for Hawkular Metrics was being set via a property
Consequence:
The password could be leaked via the ps command
Fix:
The password is now passed via a property file
Result:
The password is no longer leaked when using the ps command
|
Story Points: | --- | |
Clone Of: | ||||
: | 1420898 1424137 1427325 (view as bug list) | Environment: | ||
Last Closed: | 2017-03-15 20:01:41 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1420898, 1424137, 1427325, 1427544 |
Description
Jason Meyer
2017-01-30 14:26:02 UTC
This should be fixed with image openshift3/metrics-hawkular-metrics:3.2.1-5 or newer. This image should be in all regular testing areas. Attaching bug to errata. I'm very sorry. The images were built but were not pushed to the testing areas (registry.ops). They have been pushed, and I have verified that they are there now. # docker pull registry.ops.openshift.com/openshift3/metrics-hawkular-metrics:3.2.1-5 Trying to pull repository registry.ops.openshift.com/openshift3/metrics-hawkular-metrics ... 3.2.1-5: Pulling from registry.ops.openshift.com/openshift3/metrics-hawkular-metrics 16dc1f96e3a1: Pull complete 76b9d5ce5acf: Pull complete 70ddd7f1aa5d: Pull complete 1a1ee89807ee: Pull complete dc3400ea51ae: Pull complete cfe89ab783b9: Extracting 355.3 MB/355.3 MB failed to register layer: ApplyLayer exit status 1 stdout: stderr: open /usr/share/bash-completion/completions/semanage: input/output error Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2017:0512 |