Page MenuHomePhabricator

Create maintenance script that backs up everything but the tables and fields containing sensitive data
Open, LowPublicFeature

Description

dumpBackup.php apparently dumps just the revisions and log events. There should be a script that will dump everything except the tables and fields containing sensitive data (i.e. stuff listed at https://www.mediawiki.org/wiki/Manual:Database_fields_containing_sensitive_data ). There should be new configuration settings, $wgSensitiveFields and $wgSensitiveTables, whose default values are set in DefaultSettings.php. Extensions, e.g. CheckUser, can add fields and tables to these arrays. The backup dumper will exclude those fields and tables from the backups.


Version: 1.22.0
Severity: enhancement

Details

Reference
bz55953

Event Timeline

bzimport raised the priority of this task from to Low.Nov 22 2014, 2:20 AM
bzimport set Reference to bz55953.
bzimport added a subscriber: Unknown Object (MLST).

Perhaps the sensitive data, too, could be included in encrypted form. Then, as long as the systems administrator saved the key, these backups would still be usable to bring back the full database.

Aklapper changed the subtype of this task from "Task" to "Feature Request".Feb 4 2022, 11:13 AM
Aklapper removed a subscriber: leucosticte.