Project

General

Profile

Actions

Refactor #20116

open

Redact sensitive information from audit logs

Added by Tomer Brisker over 7 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Difficulty:
Triaged:
Fixed in Releases:
Found in Releases:

Description

Changes to information such as passwords, secret keys etc should be audited without saving the sensitive value itself.
Currently we have workarounds in place in several places in foreman core. This should be fixed in the audited gem, opened https://github.com/collectiveidea/audited/pull/339 for that. Once that is merged we should leverage the gem solution to replace all workarounds we use.


Related issues 3 (0 open3 closed)

Related to Foreman - Bug #19169: CVE-2017-2672 - audit trail leaks sensitive data for Image eventsClosedMarek Hulán04/04/2017Actions
Related to Foreman - Bug #16850: Password change activity does not show in Audit logClosedDominik Hlavac Duran10/10/2016Actions
Related to Foreman - Refactor #21920: Refactor password auditingClosedTomer Brisker12/10/2017Actions
Actions #1

Updated by Tomer Brisker over 7 years ago

  • Related to Bug #19169: CVE-2017-2672 - audit trail leaks sensitive data for Image events added
Actions #2

Updated by Tomer Brisker over 7 years ago

  • Related to Bug #16850: Password change activity does not show in Audit log added
Actions #3

Updated by Tomer Brisker almost 7 years ago

Actions

Also available in: Atom PDF