From 162d04d360d8d70269ad17a02d44a983cb8dbfef Mon Sep 17 00:00:00 2001 From: Ben Harris Date: Sat, 30 Apr 2005 16:13:11 +0000 Subject: [PATCH] X11 authentication data are generally sensitive, so blank them from packet logs by default. [originally from svn r5719] --- ssh.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ssh.c b/ssh.c index d20b1305..6fe865b7 100644 --- a/ssh.c +++ b/ssh.c @@ -7314,7 +7314,9 @@ static void do_ssh2_authconn(Ssh ssh, unsigned char *in, int inlen, ssh2_pkt_addbool(s->pktout, 1); /* want reply */ ssh2_pkt_addbool(s->pktout, 0); /* many connections */ ssh2_pkt_addstring(s->pktout, proto); + dont_log_password(ssh, s->pktout, PKTLOG_BLANK); ssh2_pkt_addstring(s->pktout, data); + end_log_omission(ssh, s->pktout); ssh2_pkt_adduint32(s->pktout, x11_get_screen_number(ssh->cfg.x11_display)); ssh2_pkt_send(ssh, s->pktout);