From: Timo Sirainen <tss@iki.fi>
Date: Tue, 2 Nov 2010 18:07:20 +0000 (+0000)
Subject: ldap auth: Hide password_noscheme from debug logs unless auth_debug_passwords=yes
X-Git-Tag: 2.0.7~35
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=5c9ddc08925dc972bfb4ca17937cfafd162a212a;p=thirdparty%2Fdovecot%2Fcore.git

ldap auth: Hide password_noscheme from debug logs unless auth_debug_passwords=yes
---

diff --git a/src/auth/db-ldap.c b/src/auth/db-ldap.c
index d0aa5bce9a..b9c2506256 100644
--- a/src/auth/db-ldap.c
+++ b/src/auth/db-ldap.c
@@ -1158,7 +1158,8 @@ db_ldap_result_return_value(struct db_ldap_result_iterate_context *ctx)
 		if (!first)
 			str_append_c(ctx->debug, '/');
 		if (ctx->auth_request->set->debug_passwords ||
-		    strcmp(ctx->name, "password") != 0)
+		    (strcmp(ctx->name, "password") != 0 &&
+		     strcmp(ctx->name, "password_noscheme") != 0))
 			str_append(ctx->debug, ctx->value);
 		else
 			str_append(ctx->debug, PASSWORD_HIDDEN_STR);