Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Won't Fix
Priority: Major - P3
Fix Version/s: None
Affects Version/s: 3.2.7
Component/s: Logging, Security
Labels:
- PM396

Sprint:
Security (08/08/16)

We would like to improve the log redaction feature. It is hard to say if any of these suggestions are feasible or even desirable before we have a complete system in place running with redaction.

Some suggestions below:

Make it more granular for certain common log locations, such as in curop.cpp. See CR: https://mongodbcr.appspot.com/83770003/ for a suggested parametrized redact function for BSON objects.

Encrypt field values with a key stored in the database and introduce a command that can decrypt the values.

Store a mapping between 'redacted' _id values and real _id values for index problem diagnosis.

depends on

SERVER-24991 Redact streaming log messages using the 'redact' functions

Closed

Assignee:: DO NOT USE - Backlog - Platform Team

Reporter:: Andreas Nilsson

Participants:: Andreas Nilsson, DO NOT USE - Backlog - Platform Team

Votes:: 1 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: Jul 11 2016 05:57:33 PM UTC

Updated:: Aug 21 2018 07:25:42 PM UTC

Resolved:: Aug 21 2018 07:25:42 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates