| Anonymous | Login | Signup for a new account | 2024-11-01 01:14 CET | |
| My View | View Issues | Change Log | Roadmap | Search |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||
| 0000488 | CLE/P | 2. CLP | public | 2014-06-26 08:32 | 2014-06-27 13:31 | ||||
| Reporter | Falk Reichbott | ||||||||
| Assigned To | Falk Reichbott | ||||||||
| Priority | high | Severity | feature | Reproducibility | have not tried | ||||
| Status | resolved | Resolution | fixed | ||||||
| Platform | General | OS | General | OS Version | General | ||||
| Product Version | 1.1 | ||||||||
| Target Version | 1.2 | Fixed in Version | 1.1 | ||||||
| Summary | 0000488: Prevent logging and tracing of passwords | ||||||||
| Description | The type string is currently used to handle passwords and passphrases, but normal strings are traced as lexems, part of the parsed parameter list aso. For security reasons it would be helpful to have a flag which prevents logging in clear form of this parameter. Additional it would be helpful to have a own type for passphrases, where the scanner at once calculate a one way hash value and the type is a fix 32 byte array containing the hashed string value, which can be used for example as 256 bit key. | ||||||||
| Tags | No tags attached. | ||||||||
| Attached Files | |||||||||
 Relationships |
|
 Relationships |
|
Notes |
|
| There are no notes attached to this issue. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2014-06-26 08:32 | Falk Reichbott | New Issue | |
| 2014-06-26 08:32 | Falk Reichbott | Status | new => assigned |
| 2014-06-26 08:32 | Falk Reichbott | Assigned To | => Falk Reichbott |
| 2014-06-27 13:31 | Falk Reichbott | Status | assigned => resolved |
| 2014-06-27 13:31 | Falk Reichbott | Fixed in Version | => 1.1 |
| 2014-06-27 13:31 | Falk Reichbott | Resolution | open => fixed |
|
Issue History |
| Copyright © 2000 - 2024 MantisBT Team |
 |