https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216753#M13563 <P>Hi Steave4app,<BR /> passwords are stored and sent encrypted.<BR /> In addition, if you want, it's possible to use SSL to encrypt logs transfer from forwarders to Indexers.<BR /> Management communications (port 8089) use always SSL.</P> <P>See: <A href="http://docs.splunk.com/Documentation/Splunk/latest/Security/WhatyoucansecurewithSplunk">http://docs.splunk.com/Documentation/Splunk/latest/Security/WhatyoucansecurewithSplunk</A></P> <P>Bye.<BR /> Giuseppe</P> Fri, 30 Dec 2016 15:35:18 GMT gcusello 2016-12-30T15:35:18Z https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216752#M13562 <P>Hi Guys, </P> <P>How would we know if password are sending into clear text format or not. Is there any query or way which can we see by the Splunk.</P> <P>Can I get some guide or light on this? </P> Fri, 30 Dec 2016 15:28:59 GMT https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216752#M13562 Steave4app 2016-12-30T15:28:59Z https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216753#M13563 <P>Hi Steave4app,<BR /> passwords are stored and sent encrypted.<BR /> In addition, if you want, it's possible to use SSL to encrypt logs transfer from forwarders to Indexers.<BR /> Management communications (port 8089) use always SSL.</P> <P>See: <A href="http://docs.splunk.com/Documentation/Splunk/latest/Security/WhatyoucansecurewithSplunk">http://docs.splunk.com/Documentation/Splunk/latest/Security/WhatyoucansecurewithSplunk</A></P> <P>Bye.<BR /> Giuseppe</P> Fri, 30 Dec 2016 15:35:18 GMT https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216753#M13563 gcusello 2016-12-30T15:35:18Z https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216754#M13564 <P>How about user passwords? Any windows or linux or ssh password are sending in clear text format.. Is there any way to confirm this in the Splunk?</P> Fri, 30 Dec 2016 15:56:09 GMT https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216754#M13564 Steave4app 2016-12-30T15:56:09Z https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216755#M13565 <P>If password are logged in clear text, they remain in clear text, but it's possible to mask them in Input Phase or also in search Phase (but it's less secure).<BR /> See <A href="https://docs.splunk.com/Documentation/Splunk/6.5.1/Data/Anonymizedata">https://docs.splunk.com/Documentation/Splunk/6.5.1/Data/Anonymizedata</A></P> <P>Bye.<BR /> Giuseppe</P> Fri, 30 Dec 2016 16:23:16 GMT https://community.splunk.com/t5/Security/Password-secure-investigation/m-p/216755#M13565 gcusello 2016-12-30T16:23:16Z