[
http://mifosforge.jira.com/browse/MIFOSADMIN-164?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Keith Pierce updated MIFOSADMIN-164:
------------------------------------
Description:
Contributors to mifos.org/mifos.com code need to create an environment similar
to the live environment for testing or development. However, doing so exposes
our site data to being leaked. Critical information in mifos.org/mifos.com
includes: user passwords and other profile information, IP addresses,
unpublished content.
Solution:
# Create a script to remove sensitive information from a dump of the site's
database. Make the sanitized database available to contributors. Note that two
scripts may be needed for each of mifos.org and mifos.com.
# Extend the development workflow: When the site is updated or modified
** Determine whether the modifications have added new sensitive fields to the
database.
** If so, modify the scripts to scrub the new sensitive fields, and
** Distribute a new sanitized copy.
was:
Contributors to mifos.org/mifos.com code need to create an environment similar
to the live environment for testing or development. However, doing so exposes
our site data to being leaked. Critical information in mifos.org/mifos.com
includes: user passwords and other profile information, IP addresses,
unpublished content.
Solution:
1. create a script to remove sensitive information from a dump of the site's
database. Make the santitized database available to contributors. Note, two
scripts may be needed, for both mifos.org and mifos.com
Extend the development workflow:
* when the site is updated or modified
** the modifications are examined to see whether new sensitive fields are added
to the database
** if so, the script is modified to scrub the new senstive fields, and
** a new sanitized copy is made available.fos
Summary: Create a procedure to provide a sanitized database for local
mifos.com/mifos.org development (was: Create procedure to provide sanitized
database for local mifos.com/mifos.org development)
[This
site|http://crackingdrupal.com/blog/greggles/creating-sanitized-drupal-database-dump]
includes a simple script that sanitizes email addresses and IP addresses, and
truncates some potentially large tables (e.g. caches) that are irrelevant to
development. It's a starting point for a Mifos script.
> Create a procedure to provide a sanitized database for local
> mifos.com/mifos.org development
> --------------------------------------------------------------------------------------------
>
> Key: MIFOSADMIN-164
> URL: http://mifosforge.jira.com/browse/MIFOSADMIN-164
> Project: mifos administration
> Issue Type: Task
> Reporter: Keith Pierce
> Assignee: Keith Pierce
> Original Estimate: 1 day
> Remaining Estimate: 1 day
>
> Contributors to mifos.org/mifos.com code need to create an environment
> similar to the live environment for testing or development. However, doing so
> exposes our site data to being leaked. Critical information in
> mifos.org/mifos.com includes: user passwords and other profile information,
> IP addresses, unpublished content.
> Solution:
> # Create a script to remove sensitive information from a dump of the site's
> database. Make the sanitized database available to contributors. Note that
> two scripts may be needed for each of mifos.org and mifos.com.
> # Extend the development workflow: When the site is updated or modified
> ** Determine whether the modifications have added new sensitive fields to the
> database.
> ** If so, modify the scripts to scrub the new sensitive fields, and
> ** Distribute a new sanitized copy.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://mifosforge.jira.com/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
------------------------------------------------------------------------------
Centralized Desktop Delivery: Dell and VMware Reference Architecture
Simplifying enterprise desktop deployment and management using
Dell EqualLogic storage and VMware View: A highly scalable, end-to-end
client virtualization framework. Read more!
http://p.sf.net/sfu/dell-eql-dev2dev
_______________________________________________
Mifos-issues mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/mifos-issues
