Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Won't Fix
Priority: Major - P3
Fix Version/s: None
Affects Version/s: 3.2.7
Component/s: Logging, Security
Labels:
- PM396

Sprint:
Security (08/08/16)
Case:
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

We would like to improve the log redaction feature. It is hard to say if any of these suggestions are feasible or even desirable before we have a complete system in place running with redaction.

Some suggestions below:

Make it more granular for certain common log locations, such as in curop.cpp. See CR: https://mongodbcr.appspot.com/83770003/ for a suggested parametrized redact function for BSON objects.

Encrypt field values with a key stored in the database and introduce a command that can decrypt the values.

Store a mapping between 'redacted' _id values and real _id values for index problem diagnosis.

depends on

SERVER-24991 Redact streaming log messages using the 'redact' functions

Closed

Assignee:: DO NOT USE - Backlog - Platform Team
Reporter:: Andreas Nilsson (Inactive)
Participants:: Andreas Nilsson, DO NOT USE - Backlog - Platform Team
Votes:: 1 Vote for this issue
Watchers:: 6 Start watching this issue

Created:: Jul 11 2016 05:57:33 PM UTC
Updated:: Sep 10 2024 02:47:13 AM UTC
Resolved:: Aug 21 2018 07:25:42 PM UTC
Confidence Status Last Update:: 08/Aug/16 9:51 PM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates