Mercurial > dovecot > original-hg > dovecot-1.2

changeset 8710:eaf8c93be56e HEAD

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
auth_debug_passwords=yes: If auth bind fails, log the attempted password.
author Timo Sirainen <tss@iki.fi>
date Wed, 04 Feb 2009 12:30:07 -0500
parents 323c8eff78d4
children bd2bb6ff0a83
files src/auth/passdb-ldap.c
diffstat 1 files changed, 8 insertions(+), 2 deletions(-) [+]
line wrap: on
line diff
--- a/src/auth/passdb-ldap.c	Wed Feb 04 12:23:55 2009 -0500
+++ b/src/auth/passdb-ldap.c	Wed Feb 04 12:30:07 2009 -0500
@@ -155,6 +155,7 @@
 		(struct passdb_ldap_request *)ldap_request;
 	struct auth_request *auth_request = ldap_request->auth_request;
 	enum passdb_result passdb_result;
+	const char *str;
 	int ret;
 
 	passdb_result = PASSDB_RESULT_INTERNAL_FAILURE;
@@ -164,8 +165,13 @@
 		if (ret == LDAP_SUCCESS)
 			passdb_result = PASSDB_RESULT_OK;
 		else if (ret == LDAP_INVALID_CREDENTIALS) {
-			auth_request_log_info(auth_request, "ldap",
-					      "invalid credentials");
+			str = "invalid credentials";
+			if (auth_request->auth->verbose_debug_passwords) {
+				str = t_strconcat(str, " (given password: ",
+						  auth_request->mech_password,
+						  ")", NULL);
+			}
+			auth_request_log_info(auth_request, "ldap", "%s", str);
 			passdb_result = PASSDB_RESULT_PASSWORD_MISMATCH;
 		} else {
 			auth_request_log_error(auth_request, "ldap",