[SERVER-31046] Remove sensitive information from logging of parsed options during mongod startup - MongoDB

XML

Word

Printable

Details

Type: Improvement
Status: Closed
Priority: Minor - P4
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.4.11, 3.6.0-rc0
Component/s: Logging, Security
Labels:
None

Backwards Compatibility:
Fully Compatible
Backport Requested:

v3.4
Sprint:
Platforms 2017-10-23
Case:

Description

Right now the security.ldap.bind.queryPassword configuration option and --ldapQueryPassword contents is logged within [initandlisten] options: log line.

mongod is suppose to remove such sensitive information from the log file.

Attachments

Activity

People

Assignee:

Andrey Brindeev

Reporter:

Andrey Brindeev

Participants:

Andrey Brindeev, Githook User

Votes:

0 Vote for this issue

Watchers:

9 Start watching this issue

Dates

Created:

Sep 11 2017 09:51:07 PM UTC

Updated:

Apr 23 2018 06:14:57 PM UTC

Resolved:

Oct 06 2017 08:01:25 PM UTC