Tickets :: [#5583] Security risk: password printed in case of nsql failure

Summary	Security risk: password printed in case of nsql failure
Queue	Horde Framework Packages
Queue Version	FRAMEWORK_3
Type	Bug
State	Not A Bug
Priority	1. Low
Owners
Requester	Dominique (at) leuenberger (dot) net
Created	07/26/2007 (6681 days ago)
Due
Updated	07/26/2007 (6681 days ago)
Assigned
Resolved	07/26/2007 (6681 days ago)
Github Issue Link
Github Pull Request
Milestone
Patch	No

07/26/2007 08:49:17 AM	Dominique (at) leuenberger (dot) net	Comment #3	Reply to this comment
You only see this if you are logged in as an administrator. That's good to know :-) then we can call it a feature instead of a bug. Thank you for the info.

07/26/2007 08:26:57 AM	Jan Schneider	Comment #2 State ⇒ Not A Bug Priority ⇒ 1. Low	Reply to this comment
You only see this if you are logged in as an administrator.

07/26/2007 07:58:22 AM	Dominique (at) leuenberger (dot) net	Comment #1 Priority ⇒ 3. High Type ⇒ Bug Summary ⇒ Security risk: password printed in case of nsql failure Queue ⇒ Horde Framework Packages State ⇒ Unconfirmed	Reply to this comment
While being logged in, in case the SQL server encounters 'Too many connections', a whole debug list is printed out (nice thing, but not very helpful anyhow). Thw worst: in this whole debug printout, there is the PASSWORD of the SQL Server connection written out in plaintex. The risk to expose it like this is more than avarage high