search

collective / pas.plugins.ldap

Zope (and Plone) PAS Plugin providing users and groups from LDAP directory
http://pypi.python.org/pypi/pas.plugins.ldap
Other
13 stars 20 forks source link

Credentials are logged #124

Open felix-ulonska opened 5 days ago

felix-ulonska commented 5 days ago

When the log level is debug, the credentials are logged into the log file. This is security problem. If possible, replace the password with ###.

jensens commented 3 days ago

This is by intend. The idea is to never log in production with level debug. However, if there is a real world scenario where this is a problem we can change it.