Logstash Keystore password can be read from Linux command


(Keyser) #1

Hello,

the command cat /proc/$LOGSTASH_PID/environ can tell about the logstash keystore password since it's a an environment variable (LOGSTASH_KEYSTORE_PASS)

Is there a way to secure this password ?
Thank you


(Magnus B├Ąck) #2

No. If you have access to the Logstash process there's currently no way to keep the keystore password secret.


(system) #3

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.