Bug 48687

Summary: univention-join -verbose exposes admin password
Product: UCS Reporter: Christian Völker <voelker>
Component: Join (univention-join)Assignee: UCS maintainers <ucs-maintainers>
Status: NEW --- QA Contact: UCS maintainers <ucs-maintainers>
Severity: normal    
Priority: P5 CC: best, heidelberger, michelsmidt
Version: UCS 4.4   
Target Milestone: ---   
Hardware: Other   
OS: Linux   
What kind of report is it?: Security Issue What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?: Yes
School Customer affected?: Yes ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: 2019021421000413 Bug group (optional): Security, Troubleshooting
Max CVSS v3 score: 4.5 (CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N)

Description Christian Völker univentionstaff 2019-02-15 10:03:13 CET 
univention-join has the "-verbose" flag to enable verbose logging.

This appears to be done by simply setting a "set -x" at the beginning of the script.

Unfortunately this exposes the administrator password which is then written several times to the join.log file.



This is no good, even not when being aware of it.

"-verbose" should log verbose output without the password.