During our work towards openpgp-card v0.5 (https://fosstodon.org/@hko/112520486266094575), we wondered how to deal with secrets in log files.
It's often good if secrets are redacted in logs: This avoids accidental publication of a user PIN (or decrypted payload) in bug reports.
On the other hand, it can be useful for a developer to have full and verbatim logs (including secrets) for debugging.
We started work on this, but would like to hear from you. What should we do?
#smartcard #logging #OpenPGP #debug #RustLang
Heiko /
npub18s…529ap
2024-05-28 20:20:00
Author Public Key
npub18sqssxupnua6tcej3h0q63merrue6gr5qj095mygacr044l5d8qs0529apPublished at
2024-05-28 20:20:00Event JSON
{
"id": "78699585807585f7558d3cb75527b6426de6ee0401340cf813bbb1e9a3d09bf1",
"pubkey": "3c01081b819f3ba5e3328dde0d477918f99d2074049e5a6c88ee06fad7f469c1",
"created_at": 1716927600,
"kind": 1,
"tags": [
[
"t",
"logging"
],
[
"t",
"openpgp"
],
[
"t",
"smartcard"
],
[
"t",
"debug"
],
[
"t",
"rustlang"
],
[
"proxy",
"https://fosstodon.org/@hko/112520567207152750",
"web"
],
[
"proxy",
"https://fosstodon.org/users/hko/statuses/112520567207152750",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://fosstodon.org/users/hko/statuses/112520567207152750",
"pink.momostr"
]
],
"content": "During our work towards openpgp-card v0.5 (https://fosstodon.org/@hko/112520486266094575), we wondered how to deal with secrets in log files.\n\nIt's often good if secrets are redacted in logs: This avoids accidental publication of a user PIN (or decrypted payload) in bug reports.\nOn the other hand, it can be useful for a developer to have full and verbatim logs (including secrets) for debugging.\n\nWe started work on this, but would like to hear from you. What should we do?\n\n#smartcard #logging #OpenPGP #debug #RustLang",
"sig": "1c98ec151056077d12f9d541971b39342f310308950ccc60112a48298dd52d588bcce3636b227a8d2e49dcabce9d57254ddbf8fbfa8015c853b6bb9f98006da0"
}