[389-users] Audit log - clear text password in user changes

Alberto Viana Wed, 04 Apr 2012 07:42:47 -0700

I have an 389 DS (version 1.2.10.2)  with AD replication and I enabled the
audit log, but when I change a user password, shows the unhashed password
in the audit log file:


time: 20120404113336
dn: uid=alberto.viana,OU=G,OU=RJ,dc=my,dc=domain
changetype: modify
replace: userPassword
userPassword: {SSHA}bqBSVbLJpqKCujEC2JC4ysaUUJuTsFe87AoPsQ==
-
replace: modifiersname
modifiersname:
uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoo
 t
-
replace: modifytimestamp
modifytimestamp: 20120404143336Z
-
replace: unhashed#user#password
unhashed#user#password: maisumteste
-

Is the expected behavior? Can I configure to just not show the unhashed
password? Because I need the audit log.

--
389 users mailing list
389-us...@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users

[389-users] Audit log - clear text password in user changes

Reply via email to