puppet-openssl icon indicating copy to clipboard operation
puppet-openssl copied to clipboard

Published 20 hours ago verified publisher icon voxpupuli

openssl pkcs12 export leaks password

Open jdwhited opened this issue 3 years ago • 0 comments

If the pkcs12 export fails or is debugged in puppet the password leaks.

Suggesting to set command as Sensitive

command => Sensitive(inline_template('<%= @cmd.join(" ") %>')),

https://github.com/camptocamp/puppet-openssl/blob/master/manifests/export/pkcs12.pp#L51

Thanks!

jdwhited avatar Apr 21 '21 19:04 jdwhited