From ca729c5db944dccc3d6de8dcd49410e33a9d1aec Mon Sep 17 00:00:00 2001
From: Matthias Schmitz <matthias@sigxcpu.org>
Date: Thu, 19 Jul 2012 11:41:13 +0200
Subject: [PATCH] Don't write clear text passwords to logfile

* Substitue the users password by *LDAP_PASSWORD* in the logfile.
---
 src/authm_mad/remotes/ldap/authenticate |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/authm_mad/remotes/ldap/authenticate b/src/authm_mad/remotes/ldap/authenticate
index 6b9e9ae..621d4e7 100755
--- a/src/authm_mad/remotes/ldap/authenticate
+++ b/src/authm_mad/remotes/ldap/authenticate
@@ -85,7 +85,7 @@ begin
     if ldap.authenticate(user_name, secret)
         escaped_user=URI_PARSER.escape(user_name)
         escaped_secret=URI_PARSER.escape(secret)
-        puts "ldap #{escaped_user} #{escaped_secret}"
+        puts "ldap #{escaped_user} *LDAP_PASSWORD*"
         authenticated=true
         break
     else
-- 
1.7.10.4