Add option to hide ipaddress in neutron logs
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
As some might know, EU has released a new law, that gets in action on May25th 2018, that prohibits misuse of any personal data corresponding to a natural person. Any information that can directly or indirectly lead to tracking of a natural person can be captured, stored or processed only with the consent of the natural person. IP Address is categorized as one such data. It can be debated if ipaddress can be classified as personal data or not but that would be beyond the scope of this defect.
The below log statements from neutron log displays the fixed ips associated with the VMs provisioned. The VMs provisioned from an Cloud platform like OpenStack could host someone's website and thus could be used to identify a natural person. Having said that, this information(logged ip) could be very useful from a serviceability perspective. So, the question is is it possible to add a mechanism such that we are able to configure whether this information should be logged or not?
2018-05-10 03:50:01.157 18683 INFO neutron.wsgi [req-b7b52f32-
2018-05-10 03:50:02.049 18683 INFO neutron.wsgi [req-879d19ac-
description: | updated |
description: | updated |
summary: |
- Skip logging of ipaddress in neutron logs. + Add option to hide ipaddress in neutron logs |
I'm not a layer and I don't know details of GDPR compliance but the same IP address is stored in Neutron's (and Nova as well probably) database. Do You want to remove it from there also? It's IMO not possible :)