Logs reveal sensitive information when using Jumphost
jsmith7735 opened this issue · comments
When using the JumpHost feature the jumphost username and password are revealed in log messages. This may not be the intended behavior. See the logs below.
Gathering logs for 'Versa SDWAN FlexVNF Verification'...
2021-08-03 17:18:07.052465 - info - USER admin - SERVICE Versa SDWAN FlexVNF Verification - DEVICE CERVERSADIRECTOR - STARTING
2021-08-03 17:18:07.717011 - info - USER admin - SERVICE Versa Test Verification - DEVICE CERVERSADIRECTOR - STARTING
2021-08-03 17:18:07.736562 - info - USER admin - SERVICE Versa Test Verification - DEVICE CERVERSADIRECTOR - OPENING Netmiko connection
2021-08-03 17:18:07.763040 - info - USER admin - SERVICE Versa Test Verification - Using 'Versa Director' credentials for 'CERVERSADIRECTOR'
2021-08-03 17:18:12.468565 - info - USER admin - SERVICE Versa Test Verification - Sent 'ssh myusername@172.16.12.121', waiting for 'myusername'
2021-08-03 17:18:12.970601 - info - USER admin - SERVICE Versa Test Verification - Sent '.*password', waiting for 'mysecretpassword'
2021-08-03 17:18:43.681861 - info - USER admin - SERVICE Versa Test Verification - DEVICE CERVERSADIRECTOR - FINISHED
2021-08-03 17:19:03.947882 - info - USER admin - SERVICE Versa SDWAN FlexVNF Verification - DEVICE CERVERSADIRECTOR - Closed netmiko connection
2021-08-03 17:19:03.976473 - info - USER admin - SERVICE Versa SDWAN FlexVNF Verification - DEVICE CERVERSADIRECTOR - FINISHED