Closed
Bug 1381511
Opened 8 years ago
Closed 8 years ago
Autophone - do not consider treeherder client id to be sensitive data
Categories
(Testing Graveyard :: Autophone, enhancement)
Testing Graveyard
Autophone
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: bc, Assigned: bc)
References
Details
Attachments
(1 file)
|
723 bytes,
patch
|
jmaher
:
review+
|
Details | Diff | Splinter Review |
https://github.com/mozilla/autophone/blob/master/options.py#L48 defines the data items which are considered sensitive. These are used to exclude messages which contain sensitive data from being logged and made public in https://github.com/mozilla/autophone/blob/master/sensitivedatafilter.py#L19
This is a problem due to the simple means by which we test for inclusion of the sensitive data. We use a simple |data in message| test which results in false positives if the data is a generic enough string.
Unless we change the user names etc to be completely unique, I intend to just remove the items which aren't that sensitive and only keep the passwords.
|
Assignee | |
Comment 1•8 years ago
|
||
It's really the treeherder client id that is the problem.
Summary: Autophone - do not consider user account names to be sensitive data → Autophone - do not consider treeherder client id to be sensitive data
|
|
Assignee | |
Comment 2•8 years ago
|
||
Attachment #8887085 -
Flags: review?(jmaher)
Comment on attachment 8887085 [details] [diff] [review]
bug-1381511-v1.patch
Review of attachment 8887085 [details] [diff] [review]:
-----------------------------------------------------------------
face palm
Attachment #8887085 -
Flags: review?(jmaher) → review+
|
|
Assignee | |
Comment 4•8 years ago
|
||
https://github.com/mozilla/autophone/commit/95fcfe077e50442527b5592c13e7a517ecc968d3
deployed 2017-07-17 08:36
|
||
Updated•3 years ago
|
Product: Testing → Testing Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•