Bug 1476864 - Option to encrypt the proxy password in rhsm.conf [NEEDINFO]
Option to encrypt the proxy password in rhsm.conf
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: subscription-manager (Show other bugs)
Unspecified Unspecified
unspecified Severity high
: rc
: ---
Assigned To: candlepin-bugs
John Sefler
: FutureFeature
Depends On:
  Show dependency treegraph
Reported: 2017-07-31 12:19 EDT by Brian Coca
Modified: 2017-08-10 10:26 EDT (History)
5 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2017-07-31 13:18:45 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---
csnyder: needinfo? (brcoca)

Attachments (Terms of Use)

  None (edit)
Description Brian Coca 2017-07-31 12:19:33 EDT
Description of problem:
The customer would like the option to encrypt the proxy password in rhsm.conf

How reproducible:

Expected results:
Option to encrypt the proxy password in rhsm.conf

Additional info:

At the very least, an option to reference a file containing the proxy information.
Comment 2 Kevin Howell 2017-07-31 13:18:45 EDT
This is at best obfuscation. Given that subscription-manager code is transparent, and that the user running subscription-manager would have access to rhsm.conf, as well as any information needed to decrypt the proxy password, this provides little value. I would suggest that instead, the user can chmod the rhsm.conf file appropriately in order to protect it. We're happy to help brainstorm other solutions.

Note You need to log in before you can comment on or make changes to this bug.