Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-50302

User's name can get printed in system event log

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Critical
    • Resolution: Fixed
    • 7.1.0
    • 7.1.0
    • view-engine
    • centos 7 64 bit; CB EE 7.1.0-1985

    Description

      For example:
      At the audit settings, if one disables audit for user "sumedh/couchbase", the name gets printed in system event log. Something like this:

      [{"timestamp":"2022-01-10T06:30:46.872Z","uuid":"633156f6-b283-056c-4be6-2d76bcdd17ca","event_id":10243,"component":"views","description":"view engine settings changed","severity":"info","extra_attributes":{"section":"security","key":"audit","old_value":"[{audit_enabled,true},\n {disabled_users,[{\"sumedh\",local}]},\n {enabled_events,[20480,20482,20483,20485,20488,20489,20490,20491,20492,20493,\n         20494,32768,32769,32773,32774,32775,32776,32777,32778,32779,\n         32781,32784,32789,32790,32791,32792,32794,32797,36865,36866,\n         40960,40961,40962,40964,40966,45056,45058,45059,45060,45062,\n         45063,45064,45065,45067,45068,45069,45071,45072,45073,\n         45074]}]","new_value":"[{audit_enabled,false},\n {disabled_users,[{\"sumedh\",local}]}

      And the PRD says that:

      Usernames, Passwords, Certificates, Document IDs, Document Keys and Values, Email Addresses and other sensitive data are absolutely not allowed to be stored in the System Event Log.

      Ns-server encodes users (or uses UUID in place of names). Something like this:

      "extra_attributes":{"user":"Cr9YfZyUGVZwVT6rilEXSG/J29B8ZdZVq8dGs7QeTt0=","domain":"local"}}]"extra_attributes":{"user":"Cr9YfZyUGVZwVT6rilEXSG/J29B8ZdZVq8dGs7QeTt0=","domain":"local"}}]%MCEPASTEBIN%

      So maybe something like that needs to be done here too, I think.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          While debugging the current source of the raw username being passed in, also came across MB-50438 where ns_server can log username.

          abhishek.jindal Abhishek Jindal added a comment - While debugging the current source of the raw username being passed in, also came across MB-50438 where ns_server can log username.

          Sumedh Basarkod Please try the same with the latest upcoming build having the fix.

          Thanks!

          abhishek.jindal Abhishek Jindal added a comment - Sumedh Basarkod Please try the same with the latest upcoming build having the fix. Thanks!

          Build couchbase-server-7.1.0-2096 contains couchdb commit 1da99e2 with commit message:
          MB-50302 : Sanitize usernames before pushing event logs

          build-team Couchbase Build Team added a comment - Build couchbase-server-7.1.0-2096 contains couchdb commit 1da99e2 with commit message: MB-50302 : Sanitize usernames before pushing event logs

          Verified on 7.1.0-2165. Closing

           

          sumedh.basarkod Sumedh Basarkod (Inactive) added a comment - Verified on 7.1.0-2165. Closing  

          People

            sumedh.basarkod Sumedh Basarkod (Inactive)
            sumedh.basarkod Sumedh Basarkod (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty