Re: how to prevent logging passwords in request and sessionparams?

Message - From: Timothy Larson [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 19, 2002 6:17 PM Subject: how to prevent logging passwords in request and sessionparams? How do you prevent logging of passwords held in request parameters and session attributes? I do not want

Re: how to prevent logging passwords in request andsessionparams?

Larson [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 19, 2002 6:17 PM Subject: how to prevent logging passwords in request and sessionparams? How do you prevent logging of passwords held in request parameters and session attributes? I do not want to turn off logging completely

Re: how to prevent logging passwords in request and sessionparams?

Hi Timothy, On Fri, Sep 20, 2002 at 11:43:48AM -0400, Timothy Larson wrote: It would be helpfull if the request parameters and session attributes were logged, but with certain ones not showing their values. For example: SESSION ATTRIBUTES: PARAM: 'username' VALUE: 'tdlarson'

Re: how to prevent logging passwords in request and sessionparams?

second question : yes : see rotation tag in WEB-INF/logkit.xconf. Babs - Original Message - From: Timothy Larson [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 19, 2002 6:17 PM Subject: how to prevent logging passwords in request and sessionparams? How do you