Russ Allbery <[email protected]> writes: > Simon Josefsson <[email protected]> writes: > >> Thanks -- I have changed shishid to use LOG_AUTHPRIV now (we'll see how >> portable that is compared to LOG_AUTH...). > > You should only use LOG_AUTHPRIV for auth logs that have a substantial > risk of recording someone's password. I'm not sure if this situation > applies. It's normally used by PAM modules, but not by Kerberos KDCs. > > Anyway, every piece of code I've ever seen that uses LOG_AUTHPRIV has in > it something akin to: > > #ifndef LOG_AUTHPRIV > # define LOG_AUTHPRIV LOG_AUTH > #endif
I don't think shishid would ever syslog any passwords. So maybe we should use LOG_AUTH instead, then? I wonder why LOG_AUTH was marked deprecated in my man page... /Simon _______________________________________________ Help-shishi mailing list [email protected] https://lists.gnu.org/mailman/listinfo/help-shishi
