Don't log admin commands in MONITOR.

Otherwise there are security risks, especially when providing Redis as a service, the user may "sniff" for admin commands renamed to an unguessable string via rename-command in redis.conf.
2014-12-13 08:57:06 +01:00 · 2014-12-13 08:57:06 +01:00 · 637957eed0
commit 637957eed0
parent 63aa6e2414
1 changed files with 1 additions and 1 deletions
--- a/src/redis.c
+++ b/src/redis.c
@ -2033,7 +2033,7 @@ void call(redisClient *c, int flags) {
     * not generated from reading an AOF. */
    if (listLength(server.monitors) &&
        !server.loading &&
-        !(c->cmd->flags & REDIS_CMD_SKIP_MONITOR))
+        !(c->cmd->flags & (REDIS_CMD_SKIP_MONITOR|REDIS_CMD_ADMIN)))
    {
        replicationFeedMonitors(c,server.monitors,c->db->id,c->argv,c->argc);
    }