[SERVER-31046] Remove sensitive information from logging of parsed options during mongod startup - MongoDB

XML

Word

Printable

Details

Type: Improvement
Status: Closed
Priority: Minor - P4
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.4.11, 3.6.0-rc0
Component/s: Logging, Security
Labels:
None

Backwards Compatibility:
Fully Compatible
Backport Requested:

v3.4
Sprint:
Platforms 2017-10-23
Case:

Description

Right now the security.ldap.bind.queryPassword configuration option and --ldapQueryPassword contents is logged within [initandlisten] options: log line.

mongod is suppose to remove such sensitive information from the log file.

Attachments

Activity

People

Assignee:: Andrey Brindeev

Reporter:: Andrey Brindeev

Participants:: Andrey Brindeev, Githook User

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: Sep 11 2017 09:51:07 PM UTC

Updated:: Apr 23 2018 06:14:57 PM UTC

Resolved:: Oct 06 2017 08:01:25 PM UTC