| From: | Don Seiler <don(at)seiler(dot)us> |
|---|---|
| To: | pgsql-admin <pgsql-admin(at)postgresql(dot)org> |
| Subject: | Passwords in clear text in server log |
| Date: | 2017-10-11 14:30:50 |
| Message-ID: | CAHJZqBDe1-oiYtdh5pcWLAhr3jsDMFQg4miv3PYADH3YWKqZ2w@mail.gmail.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
When I run a CREATE USER or ALTER USER statement and set a password for a
user, that statement gets printed to the server log, along with the
password, IN CLEAR TEXT. For example:
2017-10-11 09:20:40 CDT [19024]: [3-1]
db=postgres,user=postgres,app=psql,client=[local] LOG: statement: CREATE
USER foo PASSWORD 'bar';
2017-10-11 09:20:42 CDT [19024]: [4-1]
db=postgres,user=postgres,app=psql,client=[local] LOG: statement: ALTER
USER foo PASSWORD 'boo123';
These seems like a really bad security bug. Regardless of what other log
statement settings you may have, there should never be a reason to print a
password in plain text to the logs.
This was in Postgres 9.6.4.
Don.
--
Don Seiler
www.seiler.us
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2017-10-11 14:48:33 | Re: Passwords in clear text in server log |
| Previous Message | Scott Mead | 2017-10-11 02:10:07 | Re: Can master and slave on different PG versions? |