Overview

File password-log.patch of Package freeradius-server.openSUSE_Leap_42.3_Update

From dae8c3a8d4cdd82b3dd04989d8f92dd937bcd6c9 Mon Sep 17 00:00:00 2001
From: "Alan T. DeKok" <aland@freeradius.org>
Date: Thu, 14 Sep 2017 10:08:43 -0400
Subject: [PATCH] don't log cleartext-password.  Fixes #2064

Fixes: bsc#1099802

Signed-off-by: Jonathan Brielmaier <jbrielmaier@suse.de>
---
 src/modules/rlm_pap/rlm_pap.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/modules/rlm_pap/rlm_pap.c b/src/modules/rlm_pap/rlm_pap.c
index 5c149b0579..dff2e86bbd 100644
--- a/src/modules/rlm_pap/rlm_pap.c
+++ b/src/modules/rlm_pap/rlm_pap.c
@@ -539,8 +539,7 @@ static rlm_rcode_t CC_HINT(nonnull) pap_auth_clear(UNUSED rlm_pap_t *inst, REQUE
 	    (rad_digest_cmp(vp->vp_octets,
 			    request->password->vp_octets,
 			    vp->vp_length) != 0)) {
-		REDEBUG("Cleartext password \"%s\" does not match \"known good\" password",
-			request->password->vp_strvalue);
+		REDEBUG("Cleartext password does not match \"known good\" password");
 		return RLM_MODULE_REJECT;
 	}
 	return RLM_MODULE_OK;
openSUSE Build Service is sponsored by
Places