Endpoint users might input sensitive data into the command line. The obfuscation of command line inputs protects against unauthorized users accessing the data in plain text in the sensor .log files and the sensor databases.

There are three ways to obfuscate command line inputs:

  • Command line - HIDE_COMMAND_LINES=1
  • RepCLI - hideCmdLines [0|1]
  • Set HideCommandLines=true in cfg.ini

The setting enables the obfuscation of command line input in sensor .log files and databases. The data in the Carbon Black Cloud console is not obfuscated. For more information about RepCLI, see Managing Sensors by using RepCLI in the Carbon Black Cloud User Guide.