Hello all, Saturday, July 23, 2005, Goncalo Farias wrote: >>> I noticed that protocol logging also logs the account info, >>> username/password. I think the REAL password should be replaced by >>> asterisks (*)
MM>> this is real communication with server, password is stored like it is MM>> sent. > It shouldn't or it's not safe to log anything at all. I'm pretty sure > the purpose of logging the real communication with the server has > nothing to do with the user/password therefor IMHO the password should > be masked (with random size, preferably). purpose of this log is to find problem in case, where standard log stored in Account.log didn't helped and You have not access to server to check it. -- Bye Marek Mikus Czech support of The Bat! http://www.thebat.cz Using the best The Bat! 3.51.9 under Windows XP 5.1 Build 2600 Service Pack 1 Notebook Acer, Pentium4-M 2.2 GHz, 512 MB RAM, ADSL line ________________________________________________________ Current beta is 3.51.9 | 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html IMPORTANT: To register as a Beta tester, use this link first - http://www.ritlabs.com/en/partners/testers/
