Bug #85773: Flaws in sys_log entry IP anonymization - TYPO3 Core - TYPO3 Forge

Actions

Copy link

Bug #85773

closed

Flaws in sys_log entry IP anonymization

Added by Oliver Hader over 6 years ago. Updated about 6 years ago.

Status:

Closed

Priority:

Must have

Assignee:

Markus Klein

Category:

Backend API

Target version:

9.4

Start date:

2018-06-21

Due date:

2018-06-21

% Done:

100%

Estimated time:

TYPO3 Version:

PHP Version:

7.2

Tags:

Complexity:

Is Regression:

Yes

Sprint Focus:

Description

The sys_log entry IP anonymization has several flaws which lead to a revert of the initial change in master:

REMOTE_ADDR is anonymized, REMOTE_HOST not (probably there are more occurrences)
PHP method sprintf() is invoked with too many arguments, username information is out of bounds
introduced in https://review.typo3.org/#/c/57313/

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

TYPO3 Core

Custom queries

Watchers (2)

Bug #85773

Flaws in sys_log entry IP anonymization

Updated by Gerrit Code Review over 6 years ago

Updated by Oliver Hader over 6 years ago

Updated by Gerrit Code Review over 6 years ago

Updated by Gerrit Code Review over 6 years ago

Updated by Gerrit Code Review over 6 years ago

Updated by Oliver Hader over 6 years ago

Updated by Markus Klein over 6 years ago

Updated by Markus Klein over 6 years ago

Updated by Gerrit Code Review over 6 years ago

Updated by Markus Klein over 6 years ago

Updated by Benni Mack about 6 years ago