How to avoid karaf.history being accessed by different users from the same host in Fabric?

Solution In Progress - Updated -

Issue

  • The Fabric console history spans connections by different users
  • Using two different users, adm_bmda and bmda, both backed by an LDAPLoginModule, the former having SuperUser role and the latter Monitor role, did the following:
ssh hostName -p 8101 -l ABC
<enter password>
<do some stuff>
Ctrl-d
ssh hostName1 -p 8101 -l xyz
<enter password>
<up arrow>
  • You get the last command executed by ABC displayed.Even if it is a sensitive one, such as jaas:useradd user password!

Environment

  • Red Hat JBoss Fuse
    • 6.2.1

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content