Last modified: 2014-04-21 21:18:36 UTC
The current behavior when hashing IP addresses on Event Logging is to generate a 'salt' (really a key) at runtime and to use it continuously for the lifetime of the program. The lifespan of the key and the cheapness of the hash function make it easier to attack. Per security's team request we should be making EventLogging scramble IPs by generating an HMAC SHA1 with the IP address as the message and a random byte string as the key. The key rotates every 90 days.
Prioritization and scheduling of this bug is tracked on Mingle card https://wikimedia.mingle.thoughtworks.com/projects/analytics/cards/cards/1430
Changes to this regard were already done. This bug can be closed.
Pertinent changeset: https://gerrit.wikimedia.org/r/#/c/110700/