Logstash Keystore password can be read from Linux command

(Keyser) #1


the command cat /proc/$LOGSTASH_PID/environ can tell about the logstash keystore password since it's a an environment variable (LOGSTASH_KEYSTORE_PASS)

Is there a way to secure this password ?
Thank you

(Magnus B├Ąck) #2

No. If you have access to the Logstash process there's currently no way to keep the keystore password secret.

(system) #3

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.