The Traffic Ops golang proxy appears to be logging some sensitive information contained in the configuration. Specifically this: log.Infof("Using Config: %+v\n", cfg) is writing sensitive information. We should scrub the config of sensitive information before logging and/or log this at a level other than INFO if we don't want to scrub the data.
The Traffic Ops golang proxy appears to be logging some sensitive information contained in the configuration. Specifically this:
log.Infof("Using Config: %+v\n", cfg)
is writing sensitive information. We should scrub the config of sensitive information before logging and/or log this at a level other thanINFO
if we don't want to scrub the data.