From 0143c7b81225dcd2daa1d559e1454c907c0f4f90 Mon Sep 17 00:00:00 2001 From: rdslw Date: Fri, 2 Aug 2024 22:38:59 +0000 Subject: [PATCH] added explanation about stripping of logging. --- Hardening-Guide.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/Hardening-Guide.md b/Hardening-Guide.md index a9d8aea..8345e99 100644 --- a/Hardening-Guide.md +++ b/Hardening-Guide.md @@ -43,6 +43,8 @@ If your reverse proxy is configured to save access logs, or the access logs are No other data is ever send via GET request, encrypted or unencrypted. +Be advised that internal vaultwarden logging strips query to 30 chars, hence access_token is truncated, meaning if not using reverse proxy, you shall be safe from this by default. + # Docker configuration The subsections below cover hardening related to Docker.