Displaying 1 result from an estimated 1 matches for "filtered_log_param".
Did you mean:
filtered_log_params
2006 Aug 15
4
Keeping passwords and other sensitive data out of the logs
Even is production mode Rails logs all requests params in the log files.
The problem is this often includes things like user passwords, credit
card numbers and other data. It even displays them when the values are
POSTed. If my server is hacked it would be easy to pick this data out
of the logs by a regex or two.
Is is possible to prevent logging certain params? This seems like it
could