[Openstack-security] [Bug 1549547] Fix included in openstack/neutron-lbaas 8.0.0.0b3
Thierry Carrez
thierry.carrez+lp at gmail.com
Thu Mar 3 10:04:37 UTC 2016
This issue was fixed in the openstack/neutron-lbaas 8.0.0.0b3
development milestone.
--
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1549547
Title:
LBaaS leaking password in DEBUG logs
Status in neutron:
New
Status in OpenStack Security Advisory:
Won't Fix
Bug description:
Current code leaks the keystone admin_password in the cfg into log
files:
Example from DevStack q-svc.log:
[00;32mDEBUG oslo_service.service [^[[00;36m-^[[00;32m] ^[[01;35m^[[00;32mservice_auth.admin_password = password
Issue is that the cfg.StrOpt for admin_password did not set 'secret=True", which would give:
service_auth.admin_password = ****
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1549547/+subscriptions
More information about the Openstack-security
mailing list