You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@geode.apache.org by "Vincent Ford (JIRA)" <ji...@apache.org> on 2015/12/10 23:25:11 UTC
[jira] [Resolved] (GEODE-503) Geode can leak SSL keystore password
via the log file
[ https://issues.apache.org/jira/browse/GEODE-503?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Vincent Ford resolved GEODE-503.
--------------------------------
Resolution: Fixed
Fix Version/s: 1.0.0-incubating
> Geode can leak SSL keystore password via the log file
> -----------------------------------------------------
>
> Key: GEODE-503
> URL: https://issues.apache.org/jira/browse/GEODE-503
> Project: Geode
> Issue Type: Bug
> Components: core
> Reporter: Vincent Ford
> Assignee: Vincent Ford
> Fix For: 1.0.0-incubating
>
> Attachments: AbstractConfigJUnitTest.java
>
>
> KeyStore password can be leaked via the log file, as this may get printed and is unintended. This could cause a security issue for some users by leaking information that could allow access to the keystore holding the SSL certificate used to validate connections between members.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)