On Oct 15, 2007, at 10:14 AM, Wilfong, Paul wrote:
A while back I noticed that the Wikipedia entry for log4j had links to
various C/C++ logging facilities, including log4cxx. At the time they
all had "(outdated)" next to them.
log4cxx didn't look outdated to me, so I
1. changed the entry to
You could use a filter to surpress the message any message that has
"password" in it.
On 10/15/07, John Smith <[EMAIL PROTECTED]> wrote:
> Hi,
> Is there any way to suppress passwords' display in the log files?
> I am concerned that log files will be accessible to various users on
> the server, di
Great!
Now it's working. I've made some changes, like add both appenders to
root logger and keep some unusual names but I think that it's what I
need.
Thanks a lot.
Julio
On 10/11/07, Curt Arnold <[EMAIL PROTECTED]> wrote:
>
> On Oct 11, 2007, at 6:46 PM, Julio S. G. wrote:
> >> On 10/11/07, Juli
Where are you pulling the passwords from? Are you using an NDC/MDC?
If the passwords are logging directly by your application - i.e. something
like:
logger.debug("password = " + password);
Then you should look at changing the log statements.
On 10/15/07, John Smith <[EMAIL PROTECTED]> wrote:
>
Hi,
Is there any way to suppress passwords' display in the log files?
I am concerned that log files will be accessible to various users on
the server, disclosing the application passwords to them.
Is there some way to filter the passwords before they are committed to
the log file?
Thanks,
John
A while back I noticed that the Wikipedia entry for log4j had links to
various C/C++ logging facilities, including log4cxx. At the time they
all had "(outdated)" next to them.
log4cxx didn't look outdated to me, so I
1. changed the entry to remove the label,
2. put a question in the wikipedia d
