[DOCS-14075] [TOOLS] Improve processlist output Created: 04/Jan/21 Updated: 30/Oct/23 Due: 08/Jan/21 Resolved: 11/Feb/21 |
|
| Status: | Closed |
| Project: | Documentation |
| Component/s: | tools |
| Affects Version/s: | None |
| Fix Version/s: | Server_Docs_20231030 |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Anonymous | Assignee: | Andrew Feierabend (Inactive) |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Participants: | |||||||||
| Days since reply: | 2 years, 51 weeks, 6 days ago | ||||||||
| Epic Link: | DOCSP-11348 | ||||||||
| Story Points: | 3 | ||||||||
| Description |
Descriptionsome docs changes proposed in "behavioral description" section of the tech design doc Engineering Description SummaryThe scope for this project aims to determine what action, if any, is needed to prevent or mitigate the visibility of password arguments in ps output. MotivationCurrently, there are two ways to provide a password to the tools. One is on the command line via the --password flag, and the other is via stdin (when --password="" or --username is set without --password). When the password is provided on the command line, it is visible in the output of ps (or, more generally, to anyone with access to the process table). Over the years, this behavior has been discussed in the context of the tools ( Past discussions and product decisions do not clearly indicate the correct course of action for the tools. For example, the mongo shell overwrites passwords in the command-line with “x” characters, while the tools have elected not to do the same in the past, citing security concerns. The BI Connector has also elected not to obscure command-line passwords, as it is possible for users to provide passwords via other means. Scope of changesImpact to Other DocsMVP (Work and Date)Resources (Scope or Design Docs, Invision, etc.) |
| Comments |
| Comment by Githook User [ 11/Feb/21 ] |
|
Author: {'name': 'Andrew Feierabend', 'email': 'andrew.feierabend@mongodb.com', 'username': 'andf-mongodb'}Message: |