c2c-oerpscenario team mailing list archive
-
c2c-oerpscenario team
-
Mailing list archive
-
Message #04880
[Bug 612956] Re: Readable password in logs
Hello,
Our R&D Teams are focused on the latest OpenERP version, and this issue does not seem to affect it.
Could you try with the latest development version (for example v6.0RC1 available on openerp.com), and reopen the bug if it is still present in it?
Our policy is to keep the changes applied on stable branches to a minimum, in order to limit the regression risks for customers that are in production. This means that bugs reported on Launchpad are fixed in the trunk branch only by default, even if they were reported against other stable versions.
We stand of course ready to backport the change to stable releases if it has an impact on any customer. In this case please report it to our maintenance team via the OpenERP Publisher's Warranty. They will quickly help solve the issue and backport the fix if needed.
Thank you for your understanding!
** Changed in: openobject-addons
Status: New => Invalid
--
Readable password in logs
https://bugs.launchpad.net/bugs/612956
You received this bug notification because you are a member of C2C
OERPScenario, which is subscribed to the OpenERP Project Group.
Status in OpenObject Addons Modules: Invalid
Bug description:
opener-server.log (5.12 and 6.0) the database password appears clearly in one line.
[2010-08-03 20:07:33,143] DEBUG:db.connection_pool:ConnectionPool(used=0/count=0/max=64) Borrow connection to 'user=openerp password=password dbname=template1'
Other lines are correct with a masked password:
[2010-08-03 20:07:33,146] DEBUG:db.connection_pool:ConnectionPool(used=1/count=1/max=64) Create new connection
[2010-08-03 20:07:33,234] DEBUG:db.connection_pool:ConnectionPool(used=1/count=1/max=64) Give back connection to 'user=openerp password=xxxxxxxxxx dbname=template1'
[2010-08-03 20:07:33,235] DEBUG:db.connection_pool:ConnectionPool(used=0/count=0/max=64) Forgot connection to 'user=openerp password=xxxxxxxxxx dbname=template1'