Re: Passwords visible in infrastructure logs
Amit Kumar Gupta
Hey Momchil,toggle quoted messageShow quoted text
Do you know whether it's the DEA or Warden that's logging that sensitive
data when you say "runner"?
I would recommended opening issues against the relevant projects:
DEA or Warden: https://github.com/cloudfoundry/dea_ng/issues or
As for NATS, you may be able to change the logging level? Alternatively,
NATS is not a Cloud Foundry project but you could ask over there about
encrypting log output: https://github.com/nats-io/gnatsd
In Pivotal's production environments, we run 100% on Diego, so we are not
concerned with DEA/Warden logging, and this move also removes NATS from the
flows like create-user-provided-service. CC is likely still an issue, so
it would be a good one to raise against their GitHub project.
On Fri, Dec 4, 2015 at 2:09 AM, Momchil Atanassov <momchil.atanassov(a)sap.com