You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@flink.apache.org by "Suchithra V N (Jira)" <ji...@apache.org> on 2021/01/29 03:47:00 UTC

[jira] [Created] (FLINK-21196) Sensitive information(password) is not masked in configuration file

Suchithra V N created FLINK-21196:
-------------------------------------

             Summary: Sensitive information(password) is not masked in configuration file
                 Key: FLINK-21196
                 URL: https://issues.apache.org/jira/browse/FLINK-21196
             Project: Flink
          Issue Type: Bug
          Components: Deployment / Scripts
    Affects Versions: 1.11.3, 1.10.0
            Reporter: Suchithra V N


When ssecurit settings are enabled in flink configuration passwords information will be wriiten in flink-conf.yaml file as a plain text. If any attacker is able to access this file can use these paswords to decrypt the files. Hence secure mechanism is required to mask these senstive information from flink-conf.yaml file.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)