Don't log hashed password

author Jamie Cameron <jcameron@webmin.com>

Thu, 8 Jan 2009 18:49:23 +0000 (18:49 +0000)

committer Jamie Cameron <jcameron@webmin.com>

Thu, 8 Jan 2009 18:49:23 +0000 (18:49 +0000)
author Jamie Cameron <jcameron@webmin.com>
Thu, 8 Jan 2009 18:49:23 +0000 (18:49 +0000)
committer Jamie Cameron <jcameron@webmin.com>
Thu, 8 Jan 2009 18:49:23 +0000 (18:49 +0000)
diff --git a/acl/save_user.cgi b/acl/save_user.cgi

index 03b4d66..69238d9 100755 (executable)
--- a/acl/save_user.cgi
+++ b/acl/save_user.cgi
@@ -355,6 +355,7 @@ if ($in{'old'} && $in{'acl_security_form'} && !$group) {
  
  # Log the event
  delete($in{'pass'});
+delete($in{'oldpass'});
  if ($in{'old'}) {
         &webmin_log("modify", "user", $in{'old'}, \%in);
         }
author	Jamie Cameron <jcameron@webmin.com>
	Thu, 8 Jan 2009 18:49:23 +0000 (18:49 +0000)
committer	Jamie Cameron <jcameron@webmin.com>
	Thu, 8 Jan 2009 18:49:23 +0000 (18:49 +0000)