Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-22240

Secret Management: set master password for all nodes

    XMLWordPrintable

Details

    Description

      The initial release of secrets management calls for setting a master password independently on each node and allows for nodes without master passwords.  This undermines the purpose of the feature and leaves an obvious attack vector: adding a node without a master password will allow plain text passwords to be visible on that node.

       

      If secrets management is enabled on any node, all new nodes should be required to set a master password.

       

      Additionally, a utility should be available for setting/changing the master password cluster-wide.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            istvan.orban Istvan Orban
            dproctor Dean Proctor (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            10 Start watching this issue

            Dates

              Created:
              Updated:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty