You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ignite.apache.org by "Vyacheslav Koptilin (Jira)" <ji...@apache.org> on 2020/11/17 22:38:00 UTC

[jira] [Created] (IGNITE-13716) control.sh shows passwords in the output

Vyacheslav Koptilin created IGNITE-13716:
--------------------------------------------

             Summary: control.sh shows passwords in the output
                 Key: IGNITE-13716
                 URL: https://issues.apache.org/jira/browse/IGNITE-13716
             Project: Ignite
          Issue Type: Bug
          Components: control.sh
            Reporter: Vyacheslav Koptilin
            Assignee: Vyacheslav Koptilin


The control utility shows passwords in the output.
For instance, the "activate" command produces the following output:
{noformat}
Control utility [ver. 2.10.0-SNAPSHOT#20201117-sha1:DEV]
2020 Copyright(C) Apache Software Foundation
User: Vyacheslav Koptilin
Time: 2020-11-18T01:24:44.699
Warning: --keystore-password is insecure. Whenever possible, use interactive prompt for password (just discard --keystore-password option).
Command [ACTIVATE] started
Arguments: --keystore C:\projects\incubator-ignite\modules\clients\src\test\keystore\node01.jks --keystore-password 123456 --ssl-cipher-suites TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 --activate --yes
--------------------------------------------------------------------------------
Command deprecated. Use --set-state instead.
Cluster activated
Command [ACTIVATE] finished with code: 0
Control utility has completed execution at: 2020-11-18T01:24:45.998
Execution time: 1299 ms
{noformat}

All passwords should be hidden.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)