User credentials exposed in ovirt-requests-log
Issue
- Log files under /var/log/httpd on rhevm hosts expose the password of the user in plain text as part of the request url.
- Using ansibles' ovirt_vm module and login via the graphical RHV-M do not display this issue.
Environment
- Red Hat Virtualization 4.x
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.