[one-users] auth - stop showing clear password on the logs
João Pagaime
jpsp at fccn.pt
Thu May 10 11:50:46 PDT 2012
Hello all
could somebody show where to change open-nebula for it to stop showing
clear text passords?
probably somewhere on the code...
it is showing clear text passords for some cases of Sunstone LDAP auth
errors (as shown bellow)
--------------
Thu May 10 19:20:02 2012 [ReM][D]: UserInfo method invoked
Thu May 10 19:20:02 2012 [AuM][D]: Message received: LOG I 2 Command
execution f
ail: /var/lib/one/remotes/auth/default/authenticate 'USER' '-' PASSWORD
Thu May 10 19:20:02 2012 [AuM][I]: Command execution fail:
/var/lib/one/remotes/auth/default/authenticate 'USER' '-' PASSWORD
Thu May 10 19:20:02 2012 [AuM][D]: Message received: LOG I 2 User USER
not found
Thu May 10 19:20:02 2012 [AuM][I]: User USER not found
Thu May 10 19:20:02 2012 [AuM][D]: Message received: LOG I 2 ExitCode: 255
Thu May 10 19:20:02 2012 [AuM][I]: ExitCode: 255
Thu May 10 19:20:02 2012 [AuM][D]: Message received: AUTHENTICATE
FAILURE 2 -
Thu May 10 19:20:02 2012 [AuM][E]: Auth Error:
Thu May 10 19:20:02 2012 [ReM][E]: [UserInfo] User couldn't be
authenticated, aborting call.
----------------------
maybe it would be a good ideia to ship the production versions without
this behavior
cheers
João
More information about the Users
mailing list