This is the "no_log: True" feature already a part of Ansible. - shell: command # or any other module usage no_log: True
On Mon, Aug 4, 2014 at 12:21 PM, Mike Ray <[email protected]> wrote: > Ansible's logging to the system log is pretty sweet. > > However, there are occasions when I'd like to repress it for security > concerns. > > Specifically, when using the file module and the contents flag, whatever > "contents" is set to, will show up in the syslog in plain text. > > For example, when copying an ssl private key to a machine, you'd see: > > Aug 4 10:55:22 HOST ansible-file: Invoked with src=tmp6Ezoy8 > directory_mode=None force=False remote_src=None > dest=/etc/apache2/ssl/wildcard.xes-mad.com.key selevel=None serole=None > seuser=None recurse=False delimiter=None group=root content=-----BEGIN RSA > PRIVATE > KEY-----#012manually#012hidden#012for#012demonstration#012purposes#012-----END > RSA PRIVATE KEY-----#012 state=None original_basename=tmp6Ezoy8 diff_pee > > > So having another flag for either this module specifically or for modules > in general to suppress syslog output would be great. > > The alternative is to write a temporary file and copy that over. This is > not excessively unreasonable, but also just not my first choice. > > -- > You received this message because you are subscribed to the Google Groups > "Ansible Project" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ansible-project/653f7ba8-48e5-43b6-92b3-b75a8953084a%40googlegroups.com > <https://groups.google.com/d/msgid/ansible-project/653f7ba8-48e5-43b6-92b3-b75a8953084a%40googlegroups.com?utm_medium=email&utm_source=footer> > . > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CA%2BnsWgw6LUF2xYkzdU4049L2FP2%2BmhODESnkPLezqcj3xqVpUQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
