Granny's Programming Pearls
"inside of every large program is a small program struggling to get out"
JavaRanch.com/granny.jsp
The moose likes Sockets and Internet Protocols and the fly likes Sensitive Information in logs/ console while FTP Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login


Win a copy of The Mikado Method this week in the Agile and other Processes forum!
JavaRanch » Java Forums » Java » Sockets and Internet Protocols
Reply Bookmark "Sensitive Information in logs/ console while FTP" Watch "Sensitive Information in logs/ console while FTP" New topic
Author

Sensitive Information in logs/ console while FTP

Pawank Kumar
Greenhorn

Joined: Sep 30, 2009
Posts: 1
posted private message
0
Quote
Hi Guys,

I am using Apache Commons FTP API on Linux. My logs contains following sensitive information(basically FTP commands fired and response retrieved) which I could not suppress by any means. Displaying password is really unacceptable:-
=============
220 (vsFTPd 2.0.4)
USER ftpuser
331 Please specify the password.
PASS admin
230 Login successful.
TYPE A
200 Switching to ASCII mode.
PASV
227 Entering Passive Mode (159,156,163,210,110,136)
STOR /app/data/rds/DEV/todo//standard_approach_ref_data_Test20090929.csv
150 Ok to send data.
QUIT
226 File receive OK.

=================

How to suppress these messages. Is it something to do with Apache API or FTP server issue?
 
I agree. Here's the link: http://ej-technologies/jprofiler - if it wasn't for jprofiler, we would need to run our stuff on 16 servers instead of 3.
 
subject: Sensitive Information in logs/ console while FTP
 
Similar Threads
FTP Server Security
Open Source FTP Java client - Problems getting directory listing
FTP the files
Downloading from FTP Server
File transfer using FTP