After a short discussion on #apache we came to the conclusion that the way mod_auth_anon logs the "passwd" used to access the uri is kind of annoying. So instead of logging to the error log we decided it might be smart if it used the ident field.
use or toss - if used Rich Bowen promised to update the docs for the module. Index: src/modules/standard/mod_auth_anon.c =================================================================== RCS file: /home/cvspublic/apache-1.3/src/modules/standard/mod_auth_anon.c,v retrieving revision 1.43 diff -r1.43 mod_auth_anon.c 256,258c256 < ap_log_rerror(APLOG_MARK, APLOG_NOERRNO|APLOG_INFO, r, < "Anonymous: Passwd <%s> Accepted", < sent_pw ? sent_pw : "\'none\'"); --- > r->connection->remote_logname = ap_pstrdup(r->pool, sent_pw ? sent_pw : >"\'none\'"); -- Thomas Eibner <http://thomas.eibner.dk/> DnsZone <http://dnszone.org/> mod_pointer <http://stderr.net/mod_pointer> <http://photos.eibner.dk/>