Uploaded image for project: 'Ansible Automation Platform RFEs'
  1. Ansible Automation Platform RFEs
  2. AAPRFE-713

RFE - Encrypt database password from Controller's /etc/tower/conf.d/postgresy.py

    XMLWordPrintable

Details

    • False
    • Hide

      None

      Show
      None
    • False
    • 0
    • 0% 0%

    Description

      The database password in the file "/etc/tower/conf.d/postgresy.py" is stored in plain text. So is pulp.py

      This makes the system vulnerable.

      Customers need a provision to encrypt the password rather than having it in plain text. Or we find a way to protect the file contents.

      Current workaround isĀ https://access.redhat.com/solutions/4344381, but it's not supported

      Attachments

        Activity

          People

            msilmser Mike Silmser
            jbird@redhat.com Jeffrey Bird
            Votes:
            3 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: