Bug 1701942

Summary: Sudo password should be hidden instead of plain text.
Product: Red Hat Satellite Reporter: Vedashree Deshpande <vdeshpan>
Component: Remote ExecutionAssignee: Adam Ruzicka <aruzicka>
Status: CLOSED ERRATA QA Contact: Roman Plevka <rplevka>
Severity: high Docs Contact:
Priority: high    
Version: 6.4CC: ajoseph, aruzicka, bbuckingham, bshahu, dsynk, dwojewod, egolov, hmore, inecas, jamiewbutler, ktordeur, kupadhya, lvrtelov, myoder, pcreech, pdragun, pdwyer, rplevka, wclark, wdh
Target Milestone: 6.7.0Keywords: Triaged
Target Release: Unused   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: foreman-1.24.1.8-1 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-04-14 13:24:11 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 5 Vedashree Deshpande 2019-04-24 15:16:23 UTC 
Hello Ivan, 

The password we enter on the Web UI under Administer-> Settings-> Remote Execution -> Sudo Password, is not encrypted. So, the request is to encrypt/add asterisk instead of plain text in the place of password.

I hope I am clear. Please correct me if this meant to be like this.
Comment 12 Bryan Kearney 2019-10-01 14:05:28 UTC 
Moving this bug to POST for triage into Satellite 6 since the upstream issue https://projects.theforeman.org/issues/27481 has been resolved.
Comment 13 Kenny Tordeurs 2019-10-30 15:02:00 UTC 
*** Bug 1710085 has been marked as a duplicate of this bug. ***
Comment 16 Roman Plevka 2020-01-29 14:23:55 UTC 
FAILED QA
satellite6.7.0 snap #10
the sudo password is still plaintext in the ui.
the sudo password is still plaintext in the hammer list command output
Comment 20 Adam Ruzicka 2020-02-24 08:45:45 UTC 
All the upstream issues are closed, moving to POST
Comment 22 Roman Plevka 2020-03-02 11:25:37 UTC 
VERIFIED
on sat6.7.0-14


The passwords are masked in the API,CLI,UI output.

# hammer settings list | grep sudo_password
remote_execution_sudo_password                         | Sudo password                                               | *****                                                                            | Sudo password         

The sudo password is not displayed in the task details
Comment 25 errata-xmlrpc 2020-04-14 13:24:11 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:1454