[Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext

Sean McGinnis sean_mcginnis at dell.com
Wed Jul 6 14:57:14 UTC 2016 

** Changed in: cinder
       Status: Confirmed => Won't Fix

-- 
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1158328

Title:
  passwords in config files stored in plaintext

Status in Cinder:
  Won't Fix
Status in OpenStack Compute (nova):
  Won't Fix

Bug description:
  The credentials for database conenctions and the keystone authtoken
  are stored in plaintext within the nova.conf and apipaste config
  files.

  These values should be encrypted.  A scheme similar to /etc/shadow
  would be great.

To manage notifications about this bug go to:
https://bugs.launchpad.net/cinder/+bug/1158328/+subscriptions

More information about the Openstack-security mailing list