[CASSANDRA-9682] setting log4j.logger.org.apache.cassandra=DEBUG causes keyspace username/password to show up in system.log - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Normal
Resolution: Fixed
Fix Version/s: 2.0.17, 2.1.9, 2.2.0, 3.0 alpha 1
Component/s: Legacy/Observability
Labels:
None
Environment:

running on linux

Description

if using a third party log aggregator (which many cloud users use), this causes db credentials to be reproduced offsite, which has potential to be security issue. I would prefer the ability to disable the logging of this information while still setting log4j.logger.org.apache.cassandra=DEBUG

example system.log entry:

DEBUG [Native-Transport-Requests:373] 2015-06-21 07:52:44,595 Message.java (line 326) Responding: AUTHENTICATE org.apache.cassandra.auth.PasswordAuthenticator, v=1
DEBUG [Native-Transport-Requests:384] 2015-06-21 07:52:44,597 Message.java (line 319) Received: CREDENTIALS {username=redacted, password=redacted}, v=1

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

9682.txt
30/Jun/15 19:06
0.9 kB
Sam Tunnicliffe

Activity

People

Assignee:: Sam Tunnicliffe

Reporter:: Victor Chen

Authors:: Sam Tunnicliffe

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 29/Jun/15 22:50

Updated:: 16/Apr/19 09:31

Resolved:: 15/Jul/15 15:29