Re: Passwords visible in infrastructure logs
Amit Kumar Gupta
Hey Momchil,
toggle quoted messageShow quoted text
Do you know whether it's the DEA or Warden that's logging that sensitive data when you say "runner"? I would recommended opening issues against the relevant projects: API: https://github.com/cloudfoundry/cloud_controller_ng/issues DEA or Warden: https://github.com/cloudfoundry/dea_ng/issues or https://github.com/cloudfoundry/warden/issues As for NATS, you may be able to change the logging level? Alternatively, NATS is not a Cloud Foundry project but you could ask over there about encrypting log output: https://github.com/nats-io/gnatsd In Pivotal's production environments, we run 100% on Diego, so we are not concerned with DEA/Warden logging, and this move also removes NATS from the flows like create-user-provided-service. CC is likely still an issue, so it would be a good one to raise against their GitHub project. Best, Amit
On Fri, Dec 4, 2015 at 2:09 AM, Momchil Atanassov <momchil.atanassov(a)sap.com
wrote: Hi,
|
|