Page MenuHomePhabricator
Create Task
Maniphest T199900

[EL sanitization] Store the old salt for 2 extra weeks
Closed, ResolvedPublic8 Estimated Story Points
Actions

Description

To allow for salt+hash backfilling during the 90 day period, we need to store the old salt in addition to the current salt.
However, as storing the old salt for a long time defeats the purpose of salting, we'll keep it for 2 weeks which allows some slack time for troubleshooting and backfilling.

Details

SubjectRepoBranchLines +/-
Add backup parameter to saltrotate cron joboperations/puppetproduction+1 -1
Allow backup of last rotated salt for a given period in saltrotateanalytics/refinerymaster+78 -7
Customize query in gerrit

Related Objects
Search...

Event Timeline

mforns created this task.Jul 18 2018, 11:26 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJul 18 2018, 11:26 AM
mforns added a parent task: T199898: EventLogging sanitization.Jul 18 2018, 11:26 AM
Milimetric triaged this task as Medium priority.Jul 19 2018, 3:35 PM
Milimetric moved this task from Incoming to Operational Excellence on the Analytics board.
mforns claimed this task.Aug 22 2018, 7:17 PM
mforns added a project: Analytics-Kanban.
mforns set the point value for this task to 8.
mforns moved this task from Next Up to In Progress on the Analytics-Kanban board.
gerritbot subscribed.Aug 22 2018, 7:19 PM

Change 454631 had a related patch set uploaded (by Mforns; owner: Mforns):
[analytics/refinery@master] Allow backup of last rotated salt for a given period in saltrotate

https://gerrit.wikimedia.org/r/454631

gerritbot added a project: Patch-For-Review.Aug 22 2018, 7:19 PM
mforns moved this task from In Progress to In Code Review on the Analytics-Kanban board.Sep 25 2018, 3:03 PM
Nuria raised the priority of this task from Medium to High.Sep 26 2018, 7:20 PM
gerritbot added a comment.Sep 26 2018, 7:29 PM

Change 454631 merged by Nuria:
[analytics/refinery@master] Allow backup of last rotated salt for a given period in saltrotate

https://gerrit.wikimedia.org/r/454631

mforns moved this task from In Code Review to Ready to Deploy on the Analytics-Kanban board.Sep 27 2018, 4:15 PM
mforns moved this task from Ready to Deploy to In Progress on the Analytics-Kanban board.Oct 2 2018, 3:02 PM
gerritbot added a comment.Oct 2 2018, 6:03 PM

Change 464009 had a related patch set uploaded (by Mforns; owner: Mforns):
[operations/puppet@production] Add backup parameter to saltrotate cron job

https://gerrit.wikimedia.org/r/464009

mforns moved this task from In Progress to In Code Review on the Analytics-Kanban board.Oct 2 2018, 6:03 PM
gerritbot added a comment.Oct 2 2018, 6:04 PM

Change 464009 merged by Elukey:
[operations/puppet@production] Add backup parameter to saltrotate cron job

https://gerrit.wikimedia.org/r/464009

mforns added a subscriber: mpopov.Oct 2 2018, 6:10 PM

@mpopov
This task is done! From now on, the cryptographic salts used to hash EventLogging sensitive ids are going to be kept for an extra 14 days after salt rotation, to prevent data loss in case of incidents right after the salt rotation, as you guys suggested.
Cheers

mforns moved this task from In Code Review to Ready to Deploy on the Analytics-Kanban board.Oct 2 2018, 6:10 PM
mforns moved this task from Ready to Deploy to Done on the Analytics-Kanban board.
Nuria closed this task as Resolved.Oct 19 2018, 2:23 AM
mforns mentioned this in T209503: [EventLogging Sanitization] Enable older-than-90-day purging of unsanitized EL database (event) in Hive.Nov 14 2018, 4:47 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL