[jira] [Created] (KAFKA-5094) Censor SCRAM config change logging

JIRA Wed, 19 Apr 2017 22:00:06 -0700

Johan Ström created KAFKA-5094:
----------------------------------

             Summary: Censor SCRAM config change logging
                 Key: KAFKA-5094
                 URL: https://issues.apache.org/jira/browse/KAFKA-5094
             Project: Kafka
          Issue Type: Improvement
          Components: log
    Affects Versions: 0.10.2.0
            Reporter: Johan Ström



(As mentioned in comment on KAFKA-4943):

Another possibly bad thing is that Kafka logs the credentials in the clear too 
(0.10.2.0):

{code}
[2017-04-05 16:29:00,266] INFO Processing notification(s) to /config/changes 
(kafka.common.ZkNodeChangeNotificationListener)
[2017-04-05 16:29:00,282] INFO Processing override for entityPath: users/kafka 
with config: 
{SCRAM-SHA-512=salt=ZGl6dnRzeWQ5ZjJhNWo1bWdxN2draG96Ng==,stored_key=BEdel+ChGSnpdpV0f8s8J/fWlwZJbUtAD1N6FygpPLK1AiVjg0yiHCvigq1R2x+o72QSvNkyFITuVZMlrj8hZg==,server_key=/RZ/EcGAaXwAKvFknVpsBHzC4tBXBLPJQnN4tM/s0wJpMcR9qvvJTGKM9Nx+zoXCc9buNoCd+/2LpL+yWde+/w==,iterations=4096}
 (kafka.server.DynamicConfigManager)
{code}



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Created] (KAFKA-5094) Censor SCRAM config change logging

Reply via email to