Manual:Database fields containing sensitive data

This data should be redacted from database backups released to the public.

Extension/core	Table	Field	Comments
Core	archive		It's full of deleted edits
	recentchanges	rc_ip	Stores the IP address of the user specified on rc_user if $wgPutIPinRC is enabled (as it is in the default configuration)
	user	user_real_name	Stores the user's real name
		user email	Stores the user's email address as plaintext
		user_password	Stores a hash of the user's password
		user_newpassword	Generated for the mail-a-new-password feature
	watchlist	wl_title	Could be used to see what pages are watched by whom, and what pages are unwatched
AbuseFilter	abuse_filter_log	afl_ip
AJAXPoll	ajaxpoll_vote	poll_ip	IP addresses of voters
BlockInactive	blockinactive_emails	ba_sent_email	Email address the email was sent to
BlueSpiceWhoIsOnline	bs_whoisonline	wo_user_real_name
BounceHandler	bounce_records	br_user_email	Email address of the failing recipient
CentralAuth	globaluser	gu_email	Registered email address, may be empty.
CheckUser	cu_changes	cuc_ip	IP addresses of editors
	cu_changes	cuc_ip_hex	Hex of IP addresses of editors
	cu_log_event	cule_ip	IP address, visible
	cu_log_event	cule_ip_hex	IP address as hexadecimal
	cu_private_event	cupe_ip	IP address, visible
	cu_private_event	cupe_ip_hex	IP address as hexadecimal
Comments	Comments	Comment_IP	IP addresses of commenters
Comments	Comments_Vote	Comment_Vote_IP	IP addresses of people who voted for a comment
ConfirmAccount	account_requests	acr_real_name	Optional 'real name' to be displayed in credit listings
		acr_email	email should be restricted, not public info. Same with passwords.
		acr_ip	IP address
	account_credentials	acd_real_name	Optional 'real name' to be displayed in credit listings
		acd_email	email should be restricted, not public info. Same with passwords.
		acd_ip	IP address
Echo	echo_event	event_agent_ip	The agent (user who triggered the event), if any. If the agent is an anonymous user, event_agent_ip contains their IP address.
EmailCapture	email_capture	ec_email	Email address
Flow	flow_tree_revision	tree_orig_user_ip	denormalized so we don't need to keep finding the first revision of a post
	flow_revision	rev_user_ip
		rev_mod_user_ip
		rev_edit_user_ip	track who made the most recent content edit
Inbox	inbox_email	email_from
Inbox	inbox_email	email_to
InviteSignup	invitesignup	is_email
MagicLinkAuthentication	magic_link_auth	mla_email	email address requesting authentication; must match what is in the JWT
Metrica	metrica	user_ip
Moderation	moderation	mod_ip	IP address
MultiMail	user_secondary_email	use_email	Email address
OAuth	oauth_registered_consumer	oarc_email	Contact email address
Petition	petition_data	pt_email
RegexBlock	stats_blockedby	stats_ip
SecurePoll	securepoll_votes	vote_ip	The IP address, in hexadecimal form (IPUtils::toHex())
SocialProfile	user_board		All messages which have `ub_type = 1` are private.
SocialProfile	user_relationship_request		The whole table contains nothing but private data (user-to-user friend/foeship requests).
SSLClientAuthentication	sslcerts	ssl_email
VoteNY	Vote	vote_ip	IP addresses of voters
WikiForum	wikiforum_category	wfc_added_user_ip	IP address data.
		wfc_edited_user_ip
		wfc_deleted_user_ip
	wikiforum_forums	wff_last_post_user_ip
		wff_added_user_ip
		wff_edited_user_ip
		wff_deleted_user_ip
	wikiforum_threads	wft_user_ip
		wft_deleted_user_ip
		wft_edit_user_ip
		wft_closed_user_ip
		wft_last_post_user_ip
	wikiforum_replies	wfr_user_ip
		wfr_deleted_user_ip
		wfr_edit_user_ip
WikiLexicalData	transactions	user_ip

See also