Document "MOFs encrypted by default"

MicrosoftDocs / PowerShell-Docs

The official PowerShell documentation sources

https://learn.microsoft.com/powershell

Other

2k stars 1.58k forks source link

Document "MOFs encrypted by default" #115

Closed joeyaiello closed 8 years ago

joeyaiello commented 8 years ago

We've documented this new WMF 5.0 behavior in the release notes but not yet in the official DSC documentation.

Maybe the latter becomes "securing a MOF in PowerShell 4.0" and we add another article to describe the 5.0 behavior?

GoateePFE commented 8 years ago

Also, we need to include a warning that if credential encryption is not used, then there are still plain text passwords on the build server and the pull server. The pull server copy lives inside a ZIP file, but that is not a security boundary. Build server copies of the MOF files must be deleted immediately to prevent further exposure if only relying on encrypted MOFs at the node.

DonGill commented 8 years ago

Not sure if this was completed. Capturing OneView TFS bug (46613).

juanpablojofre commented 8 years ago

Closed by VSTS #46613 status: Fixed and verified.