[jira] [Updated] (FLINK-21196) Sensitive information(password) is in plain text format in flink-conf.yaml configuration file

Flink Jira Bot (Jira) Thu, 29 Apr 2021 16:00:45 -0700


     [ 
https://issues.apache.org/jira/browse/FLINK-21196?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Flink Jira Bot updated FLINK-21196:
-----------------------------------
    Labels: auto-deprioritized-major  (was: stale-major)

> Sensitive information(password) is in plain text format in flink-conf.yaml 
> configuration file
> ---------------------------------------------------------------------------------------------
>
>                 Key: FLINK-21196
>                 URL: https://issues.apache.org/jira/browse/FLINK-21196
>             Project: Flink
>          Issue Type: Bug
>          Components: Deployment / Scripts
>    Affects Versions: 1.10.0, 1.11.3
>            Reporter: Suchithra V N
>            Priority: Major
>              Labels: auto-deprioritized-major
>
> When ssecurit settings are enabled in flink configuration passwords 
> information will be wriiten in flink-conf.yaml file as a plain text. If any 
> attacker is able to access this file can use these paswords to decrypt the 
> files. Hence secure mechanism is required to mask these senstive information 
> from flink-conf.yaml file.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (FLINK-21196) Sensitive information(password) is in plain text format in flink-conf.yaml configuration file

Reply via email to