4 Feb
2009
4 Feb
'09
7:31 p.m.
On Wed, 2009-02-04 at 08:52 -0200, Eduardo M KALINOWSKI wrote:
Josh Gentry wrote:
Hi. I'm new to Dovecot and about to start using it in production. In the config file, I set the option, auth_debug_passwords, to yes. I do not see any failed passwords logged, however. It did cause more verbose authentication logging, but failed passwords are still hidden.
That option is not for logging passwords, but to ease problem investigation in case something is not working as it should.
Well, yes, but it's about investigating why logins are failing due to password mismatches, so logging the password in that case is useful. It was already done with pretty much all passdbs except PAM.