yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1158328] Re: passwords in config files stored in plaintext

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Sean McGinnis <sean_mcginnis@xxxxxxxx>
Date: Wed, 06 Jul 2016 14:57:14 -0000
Reply-to: Bug 1158328 <1158328@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: cinder
       Status: Confirmed => Won't Fix

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1158328

Title:
  passwords in config files stored in plaintext

Status in Cinder:
  Won't Fix
Status in OpenStack Compute (nova):
  Won't Fix

Bug description:
  The credentials for database conenctions and the keystone authtoken
  are stored in plaintext within the nova.conf and apipaste config
  files.

  These values should be encrypted.  A scheme similar to /etc/shadow
  would be great.

To manage notifications about this bug go to:
https://bugs.launchpad.net/cinder/+bug/1158328/+subscriptions