Closed
Bug 1482724
Opened 6 years ago
Closed 6 years ago
Use more secure value for ELASTICSEARCH_PASSWORD on treeherder-prototype
Categories
(Tree Management :: Treeherder: Infrastructure, enhancement, P1)
Tree Management
Treeherder: Infrastructure
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: emorley, Assigned: ghickman)
Details
Currently ELASTICSEARCH_PASSWORD on the treeherder-prototype (dev) instance is set to the same value as the username. George, this seems quite insecure - is there a reason for this? Could you generate a more secure (eg 40 character alpha-numeric-symbol) password and rotate on the elastic.co ES instance?
Flags: needinfo?(ghickman)
Assignee | ||
Comment 1•6 years ago
|
||
I've rotated the password and updated prototype's config. The email address for that account is my mozilla one (ghickman@mozilla.com), should we point that somewhere with less bus factor?
Flags: needinfo?(ghickman)
Reporter | ||
Comment 2•6 years ago
|
||
Thank you for rotating the password - is the email changed to the treeherder-internal one now too? :-)
Group: webtools-security
Flags: needinfo?(ghickman)
Assignee | ||
Comment 3•6 years ago
|
||
It is now! There's been no confirmation come through but there were no errors in the Kibana interface (where you have to make the change) so I'll assume it's worked.
Status: ASSIGNED → RESOLVED
Closed: 6 years ago
Flags: needinfo?(ghickman)
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•