In it is disclosed that
passwords are written to the log if the debug level is 'debug' level. I'm
not sure that's good practice.  I do not think Couch should log passwords
at any log level, and I think others might agree.

At the very least it should be a specific setting in the config:

  level = debug
  log-passwords = false  // proposed :)


- Paul

Reply via email to