You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cloudstack.apache.org by Tejas Gadaria <re...@gmail.com> on 2014/03/28 13:30:50 UTC
Password visible in plan text CS 4.3
Hi,
While doing volume migration from one storage to another, password was
visible in plan text.
environment CS 4.3,
Management server: CentOS 6.3 x64
Hypervisor: Hyperv
2014-03-28 17:53:39,059 DEBUG [c.c.h.h.r.HypervDirectConnectResource]
(DirectAgent-216:ctx-89b9eb84) POST response is
[{"org.apache.cloudstack.storage.command.CopyCmdAnswer":{"result":true,"details":null,"newData":{"org.apache.cloudstack.storage.to.VolumeObjectTO":{"dataStore":{"org.apache.cloudstack.storage.to.PrimaryDataStoreTO":{"uuid":"7890d244-e307-320e-ac42-f90e925b32b8","id":5,"poolType":"SMB","host":"10.129.150.24","path":"/vol_cifs?user=administrator&domain=
nw.com","port":445,"url":"SMB://
10.129.150.24//vol_cifs?user=administrator&domain=nw.com/?ROLE=Primary&STOREUUID=7890d244-e307-320e-ac42-f90e925b32b8
"}},"format":"VHD","name":"ROOT-7","path":"\\10.129.150.24\vol_cifs\ROOT-7.vhd","uuid":"ca572e34-ffa6-4cce-bb24-44c989b4156e","size":10737418240,"primaryDataStore":{"host":"10.129.150.24","uri":"cifs://
10.129.150.24/vol_cifs?user=administrator&domain=nw.com
","_role":null,"Path":"\\10.129.150.24/vol_cifs","UncPath":"\\
10.129.150.24/vol_cifs","User":"administrator","*Password":"C1sco123*
","Domain":"nw.com
","isLocal":false},"nfsDataStore":null,"FullFileName":"\\10.129.150.24\vol_cifs\ROOT-7.vhd"}},"contextMap":{}}}]
2014-03-28 17:53:39,060 DEBUG [c.c.h.h.r.HypervDirectConnectResource]
(DirectAgent-216:ctx-89b9eb84) executeRequest received response
[Lcom.cloud.agent.api.Answer;@31c91ca
Regards,
Tejas
RE: Password visible in plan text CS 4.3
Posted by Devdeep Singh <de...@citrix.com>.
Hi Tejas,
Thanks. I'll into both the issues.
Regards,
Devdeep
> -----Original Message-----
> From: Tejas Gadaria [mailto:refond.gmrt@gmail.com]
> Sent: Tuesday, April 1, 2014 2:38 PM
> To: dev@cloudstack.apache.org
> Subject: Re: Password visible in plan text CS 4.3
>
> Hi Devdeep,
>
> Thanks for reply,
>
> I don't have privilege to assign the bugs, So I have just raised the issue.
>
> https://issues.apache.org/jira/browse/CLOUDSTACK-6315
>
> Also I have raised a bug on 27th March which is not assigned to anybody yet.
> if possible please take into the consideration.
>
> https://issues.apache.org/jira/browse/CLOUDSTACK-6287
>
> Regards,
> Tejas
>
>
> On Tue, Apr 1, 2014 at 12:03 PM, Devdeep Singh
> <de...@citrix.com>wrote:
>
> > Hi Tejas,
> >
> > Can you file a bug for these? We clean up a string before logging it;
> > but it looks like we missed it here.
> >
> > Regards,
> > Devdeep
> >
> > > -----Original Message-----
> > > From: Tejas Gadaria [mailto:refond.gmrt@gmail.com]
> > > Sent: Friday, March 28, 2014 6:01 PM
> > > To: dev@cloudstack.apache.org
> > > Subject: Password visible in plan text CS 4.3
> > >
> > > Hi,
> > >
> > > While doing volume migration from one storage to another, password
> > > was visible in plan text.
> > > environment CS 4.3,
> > > Management server: CentOS 6.3 x64
> > > Hypervisor: Hyperv
> > >
> > > 2014-03-28 17:53:39,059 DEBUG
> > > [c.c.h.h.r.HypervDirectConnectResource]
> > > (DirectAgent-216:ctx-89b9eb84) POST response is
> > >
> [{"org.apache.cloudstack.storage.command.CopyCmdAnswer":{"result":tr
> > > ue
> > > ,"details":null,"newData":{"org.apache.cloudstack.storage.to.VolumeO
> > > bject
> > > TO":{"dataStore":{"org.apache.cloudstack.storage.to.PrimaryDataStore
> > > TO":{
> > > "uuid":"7890d244-e307-320e-ac42-
> > > f90e925b32b8","id":5,"poolType":"SMB","host":"10.129.150.24","path":
> > > "/vol
> > > _cifs?user=administrator&domain=
> > > nw.com","port":445,"url":"SMB://
> > >
> 10.129.150.24//vol_cifs?user=administrator&domain=nw.com/?ROLE=Prima
> > > r
> > > y&STOREUUID=7890d244-e307-320e-ac42-f90e925b32b8
> > > "}},"format":"VHD","name":"ROOT-
> > > 7","path":"\\10.129.150.24\vol_cifs\ROOT-7.vhd","uuid":"ca572e34-ffa
> > > 6-
> > > 4cce-bb24-
> > > 44c989b4156e","size":10737418240,"primaryDataStore":{"host":"10.129.
> > > 150.2
> > > 4","uri":"cifs://
> > > 10.129.150.24/vol_cifs?user=administrator&domain=nw.com
> > > ","_role":null,"Path":"\\10.129.150.24/vol_cifs","UncPath":"\\
> > > 10.129.150.24/vol_cifs","User":"administrator","*Password":"C1sco123
> > > *
> > > ","Domain":"nw.com
> > >
> > ","isLocal":false},"nfsDataStore":null,"FullFileName":"\\10.129.150.24
> > \vol_cif
> > > s\ROOT-7.vhd"}},"contextMap":{}}}]
> > > 2014-03-28 17:53:39,060 DEBUG
> > > [c.c.h.h.r.HypervDirectConnectResource]
> > > (DirectAgent-216:ctx-89b9eb84) executeRequest received response
> > > [Lcom.cloud.agent.api.Answer;@31c91ca
> > >
> > > Regards,
> > > Tejas
> >
Re: Password visible in plan text CS 4.3
Posted by Tejas Gadaria <re...@gmail.com>.
Hi Devdeep,
Thanks for reply,
I don't have privilege to assign the bugs, So I have just raised the
issue.
https://issues.apache.org/jira/browse/CLOUDSTACK-6315
Also I have raised a bug on 27th March which is not assigned to anybody yet.
if possible please take into the consideration.
https://issues.apache.org/jira/browse/CLOUDSTACK-6287
Regards,
Tejas
On Tue, Apr 1, 2014 at 12:03 PM, Devdeep Singh <de...@citrix.com>wrote:
> Hi Tejas,
>
> Can you file a bug for these? We clean up a string before logging it; but
> it looks like we missed it here.
>
> Regards,
> Devdeep
>
> > -----Original Message-----
> > From: Tejas Gadaria [mailto:refond.gmrt@gmail.com]
> > Sent: Friday, March 28, 2014 6:01 PM
> > To: dev@cloudstack.apache.org
> > Subject: Password visible in plan text CS 4.3
> >
> > Hi,
> >
> > While doing volume migration from one storage to another, password was
> > visible in plan text.
> > environment CS 4.3,
> > Management server: CentOS 6.3 x64
> > Hypervisor: Hyperv
> >
> > 2014-03-28 17:53:39,059 DEBUG [c.c.h.h.r.HypervDirectConnectResource]
> > (DirectAgent-216:ctx-89b9eb84) POST response is
> > [{"org.apache.cloudstack.storage.command.CopyCmdAnswer":{"result":true
> > ,"details":null,"newData":{"org.apache.cloudstack.storage.to.VolumeObject
> > TO":{"dataStore":{"org.apache.cloudstack.storage.to.PrimaryDataStoreTO":{
> > "uuid":"7890d244-e307-320e-ac42-
> > f90e925b32b8","id":5,"poolType":"SMB","host":"10.129.150.24","path":"/vol
> > _cifs?user=administrator&domain=
> > nw.com","port":445,"url":"SMB://
> > 10.129.150.24//vol_cifs?user=administrator&domain=nw.com/?ROLE=Primar
> > y&STOREUUID=7890d244-e307-320e-ac42-f90e925b32b8
> > "}},"format":"VHD","name":"ROOT-
> > 7","path":"\\10.129.150.24\vol_cifs\ROOT-7.vhd","uuid":"ca572e34-ffa6-
> > 4cce-bb24-
> > 44c989b4156e","size":10737418240,"primaryDataStore":{"host":"10.129.150.2
> > 4","uri":"cifs://
> > 10.129.150.24/vol_cifs?user=administrator&domain=nw.com
> > ","_role":null,"Path":"\\10.129.150.24/vol_cifs","UncPath":"\\
> > 10.129.150.24/vol_cifs","User":"administrator","*Password":"C1sco123*
> > ","Domain":"nw.com
> >
> ","isLocal":false},"nfsDataStore":null,"FullFileName":"\\10.129.150.24\vol_cif
> > s\ROOT-7.vhd"}},"contextMap":{}}}]
> > 2014-03-28 17:53:39,060 DEBUG [c.c.h.h.r.HypervDirectConnectResource]
> > (DirectAgent-216:ctx-89b9eb84) executeRequest received response
> > [Lcom.cloud.agent.api.Answer;@31c91ca
> >
> > Regards,
> > Tejas
>
RE: Password visible in plan text CS 4.3
Posted by Devdeep Singh <de...@citrix.com>.
Hi Tejas,
Can you file a bug for these? We clean up a string before logging it; but it looks like we missed it here.
Regards,
Devdeep
> -----Original Message-----
> From: Tejas Gadaria [mailto:refond.gmrt@gmail.com]
> Sent: Friday, March 28, 2014 6:01 PM
> To: dev@cloudstack.apache.org
> Subject: Password visible in plan text CS 4.3
>
> Hi,
>
> While doing volume migration from one storage to another, password was
> visible in plan text.
> environment CS 4.3,
> Management server: CentOS 6.3 x64
> Hypervisor: Hyperv
>
> 2014-03-28 17:53:39,059 DEBUG [c.c.h.h.r.HypervDirectConnectResource]
> (DirectAgent-216:ctx-89b9eb84) POST response is
> [{"org.apache.cloudstack.storage.command.CopyCmdAnswer":{"result":true
> ,"details":null,"newData":{"org.apache.cloudstack.storage.to.VolumeObject
> TO":{"dataStore":{"org.apache.cloudstack.storage.to.PrimaryDataStoreTO":{
> "uuid":"7890d244-e307-320e-ac42-
> f90e925b32b8","id":5,"poolType":"SMB","host":"10.129.150.24","path":"/vol
> _cifs?user=administrator&domain=
> nw.com","port":445,"url":"SMB://
> 10.129.150.24//vol_cifs?user=administrator&domain=nw.com/?ROLE=Primar
> y&STOREUUID=7890d244-e307-320e-ac42-f90e925b32b8
> "}},"format":"VHD","name":"ROOT-
> 7","path":"\\10.129.150.24\vol_cifs\ROOT-7.vhd","uuid":"ca572e34-ffa6-
> 4cce-bb24-
> 44c989b4156e","size":10737418240,"primaryDataStore":{"host":"10.129.150.2
> 4","uri":"cifs://
> 10.129.150.24/vol_cifs?user=administrator&domain=nw.com
> ","_role":null,"Path":"\\10.129.150.24/vol_cifs","UncPath":"\\
> 10.129.150.24/vol_cifs","User":"administrator","*Password":"C1sco123*
> ","Domain":"nw.com
> ","isLocal":false},"nfsDataStore":null,"FullFileName":"\\10.129.150.24\vol_cif
> s\ROOT-7.vhd"}},"contextMap":{}}}]
> 2014-03-28 17:53:39,060 DEBUG [c.c.h.h.r.HypervDirectConnectResource]
> (DirectAgent-216:ctx-89b9eb84) executeRequest received response
> [Lcom.cloud.agent.api.Answer;@31c91ca
>
> Regards,
> Tejas