diff options
author | Ermal Luçi <eri@pfsense.org> | 2010-03-02 00:21:39 +0000 |
---|---|---|
committer | Ermal Luçi <eri@pfsense.org> | 2010-03-02 00:21:39 +0000 |
commit | c345f265173d28e1405931f7cdde0914764d39dd (patch) | |
tree | ef1636457b46e0cb52d4c1f225270c1cbfff1c69 /etc/inc/auth.inc | |
parent | 366d0323a932d58db0dda927544dc675d77927eb (diff) | |
download | pfsense-c345f265173d28e1405931f7cdde0914764d39dd.zip pfsense-c345f265173d28e1405931f7cdde0914764d39dd.tar.gz |
Do not show the passwd used to logon on logs. Also change the replace from $username to <username> so php does not try to do clever stuff.
Diffstat (limited to 'etc/inc/auth.inc')
-rw-r--r-- | etc/inc/auth.inc | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/etc/inc/auth.inc b/etc/inc/auth.inc index 08993ff..0171fe6 100644 --- a/etc/inc/auth.inc +++ b/etc/inc/auth.inc @@ -653,7 +653,7 @@ function ldap_backed($username, $passwd) { $ldapnameattribute = $config['system']['webgui']['ldapnameattribute']; $ldapfilter = $config['system']['webgui']['ldapfilter']; $ldaptype = $config['system']['webgui']['backend']; - $ldapfilter = str_replace("\$username", $username, $ldapfilter); + $ldapfilter = str_replace("<username>", $username, $ldapfilter); /* first check if there is even an LDAP server populated */ if(!$ldapserver) { @@ -784,7 +784,7 @@ function ldap_backed($username, $passwd) { /* Now lets bind as the user we found */ if (!($res = @ldap_bind($ldap, $binduser, $passwd))) { - log_error("ERROR! ldap_backed() could not bind to {$ldapserver} - {$username} - {$passwd}. Defaulting to built-in local_backed(). Visit System -> User Manager -> Settings."); + log_error("ERROR! ldap_backed() could not bind to {$ldapserver} - {$username}. Defaulting to built-in local_backed(). Visit System -> User Manager -> Settings."); $status = local_backed($username, $passwd); return $status; } @@ -999,4 +999,4 @@ function session_auth($backing) { return true; } -?>
\ No newline at end of file +?> |