[Tickets #5583] Security risk: password printed in case of nsql failure
bugs at bugs.horde.org
bugs at bugs.horde.org
Thu Jul 26 07:58:22 UTC 2007
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/?id=5583
-----------------------------------------------------------------------
Ticket | 5583
Created By | Dominique at Leuenberger.net
Summary | Security risk: password printed in case of nsql failure
Queue | Horde Framework Packages
Version | FRAMEWORK_3
Type | Bug
State | Unconfirmed
Priority | 3. High
Owners |
-----------------------------------------------------------------------
Dominique at Leuenberger.net (2007-07-26 00:58) wrote:
While being logged in, in case the SQL server encounters 'Too many
connections', a whole debug list is printed out (nice thing, but not very
helpful anyhow).
Thw worst: in this whole debug printout, there is the PASSWORD of the SQL
Server connection written out in plaintex. The risk to expose it like this
is more than avarage high
More information about the bugs
mailing list