ACS 7.0: Protect / filter keystore password data in -D flags
AFaust opened this issue · 0 comments
FEATURE / ENHANCEMENT
Alfresco has changed how keystores for metadata encryption and TLS handling are configured, specifically how sensistive configuration for those is to be provided. Though that change was made with the alleged purpose of making those more secure - which I don't see how that specific change is meant to do in any meaningful way - it has caused our System Information tools to leak those passwords via our rendition of JAVA_OPTS flags. As Alfresco's obsession with k8s, and "JAVA_OPTS all the things" only means we will have more and more configuration passed that way, we need to find a way to secure sensitive properties just like we do for global properties - starting with the keystore passwords.
An example of other properties to secure would be solr.sharedSecret.
Also note that JAVA_OPTS and similar config flags with sensitive details occur in the following sections:
- system variables
- JVM parameters
- environment variables