Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-20796

jdbc URL can contain sensitive information that should not be logged

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 4.0.0
    • Fix Version/s: 4.0.0
    • Component/s: Hive
    • Labels:
      None
    • Target Version/s:

      Description

      It is possible to put passwords in the jdbc connection url and some jdbc drivers will supposedly use that. (derby, mysql). This information is considered sensitive, and should be masked out, while logging the connection url.

        Attachments

        1. HIVE-20796.05.patch
          5 kB
          László Pintér
        2. HIVE-20796.04.patch
          6 kB
          László Pintér
        3. HIVE-20796.03.patch
          6 kB
          László Pintér
        4. HIVE-20796.02.patch
          6 kB
          László Pintér
        5. HIVE-20796.01.patch
          2 kB
          László Pintér

          Issue Links

            Activity

              People

              • Assignee:
                lpinter László Pintér
                Reporter:
                lpinter László Pintér
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: