Closed ikerexxe closed 2 years ago
Maybe we should have extra option enabling or disabling the password print as we have in radiusd. what do you think @alandekok ? I mean, sometimes it should be helpful.
Under which circumstances would it be helpful?
Even assuming that it could be useful, I consider it dangerous to save any kind of password in plain text in a file.
Debugging things is useful.
That being said, the password can always be decoded on the RADIUS server, and viewed there.
Printing plain text passwords should be avoided. Even if it's in a root owned file like /var/log/secure