Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 23 Sep 1999 11:41:30 -0500
From:      Dan Nelson <dnelson@emsphone.com>
To:        "Jason C. Wells" <jcwells@u.washington.edu>
Cc:        FreeBSD-questions <freebsd-questions@FreeBSD.ORG>
Subject:   Re: Password in my log file
Message-ID:  <19990923114130.A62679@dan.emsphone.com>
In-Reply-To: <Pine.BSF.4.10.9909232126440.94860-100000@s8-37-26.student.washington.edu>
References:  <Pine.BSF.4.10.9909232126440.94860-100000@s8-37-26.student.washington.edu>

next in thread | previous in thread | raw e-mail | index | archive | help
In the last episode (Sep 23), Jason C. Wells said:
> I found my password in my log file!!!!
> 
> I am guessing that I must have typed in my password at the login: prompt
> and syslogd entered the attempt as an attempt from "password".
> 
> Is there a way to make sure this doesn't happen?

Add authpriv.none to the syslog.conf line of the logfile you don't want
private auth information written to.

See the manpage for syslog.conf for a setup that logs sensitive stuff
to /var/log/secure.

-- 
	Dan Nelson
	dnelson@emsphone.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990923114130.A62679>