Author: Todd Jagger Date: To: exim-users Subject: Re: [Exim] SMTP_AUTH passwords in mainlog
Thanks for your reply.
Suresh Ramasubramanian wrote: >
>
> er no - the log typically logs the *username* in cleartext
>
> where are you seeing the password logged in cleartext?
Here's a snippet from the logs with the names changed to protect the
innocent:
Where "PazzWd" is the actual password for the user.
>
> post your authenticator settings please.
>
Here are my authenticators. I admit I copied and pasted these either
from one of the configuration samples or from something here on this
list that was said to work, with minor mod for this implementation. The
"auth_users" file is parts of the /etc/shadow file for the users who
need to relay. Hence my apprehension over seeing their passwords
decrypted in the exim logs. :-)