Bug 433509 - Don't log passwords in ipaserver-install.log
Summary: Don't log passwords in ipaserver-install.log
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: freeIPA
Classification: Retired
Component: ipa-server
Version: 1.0
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Rob Crittenden
QA Contact: Chandrasekar Kannan
URL:
Whiteboard:
Depends On:
Blocks: 429034
TreeView+ depends on / blocked
 
Reported: 2008-02-19 18:59 UTC by Rob Crittenden
Modified: 2015-01-04 23:30 UTC (History)
1 user (show)

Fixed In Version: freeipa-2.0.0-1.fc15
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)
Don't log passwords in ipaserver-install.log (1.26 KB, patch)
2008-02-26 15:48 UTC, Rob Crittenden
no flags Details | Diff

Description Rob Crittenden 2008-02-19 18:59:51 UTC
The template used to create a DS instance is logged in the ipaserver-install.log
by ipa-server-install. It will look something like:

[General]
FullMachineName=   ipa.example.com
SuiteSpotUserID=   dirsrv
ServerRoot=    /usr/lib/dirsrv
[slapd]
ServerPort=   389
ServerIdentifier=   EXAMPLE-COM
Suffix=   dc=example,dc=com
RootDN=   cn=Directory Manager
RootDNPwd= password

We should not log the RootDNPwd value.

Comment 1 Rob Crittenden 2008-02-26 15:48:15 UTC
Created attachment 295941 [details]
Don't log passwords in ipaserver-install.log

Comment 2 Rob Crittenden 2008-02-27 22:23:19 UTC
Committed in changeset 693

Comment 3 Yi Zhang 2008-04-02 22:56:28 UTC
qa verified, bug closed
build used: 4-2-2008 daily build


Note You need to log in before you can comment on or make changes to this bug.