[
https://issues.apache.org/jira/browse/WHIRR-499?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13199027#comment-13199027
]
Tom White commented on WHIRR-499:
---------------------------------
It would be good to remove this from the log I think. Or could we at least have
a separate log file for sensitive information, with a name that makes it clear
that its private.
> Avoid logging private key in logs
> ---------------------------------
>
> Key: WHIRR-499
> URL: https://issues.apache.org/jira/browse/WHIRR-499
> Project: Whirr
> Issue Type: Improvement
> Affects Versions: 0.7.0
> Environment: All
> Reporter: Ashish Paliwal
> Priority: Minor
>
> whirr.log file has private key logged for the User created. This could
> potential security threat, if logs are shared for debugging purposes.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
