"Christophe David" wrote : > When using AuthUser, PmWIki stores the user password in clear in a > session variable. Therefore, the user password can be read very > easily by anyone who has access to the server.
which temporary file contains the password ? I can check my PmWiki/AuthUser/ldap configuration to reproduce the case Thanks SH _______________________________________________ pmwiki-users mailing list [email protected] http://www.pmichaud.com/mailman/listinfo/pmwiki-users
