lognopassword
Data Type
Boolean
Description
The lognopassword variable determines whether non-echoed input, such as passwords, is written to the I/O log file when I/O logging is active.
Starting with version 7.0.0, all input and output is logged until a password prompt is recognized on stdout. Password prompts to recognize must be listed in the policy language list variable passwordloggingprompts which defaults to {"Password:", "password:", "Passwd:", "passwd:"} for v7.0.0 to v7.5.0, and to {"Password", "password", "Passwd", "passwd"} for v7.5.1 and later.
After a password prompt is recognized, non-echoed stdin is not logged until a newline is received, or until input exceeds 80 characters.
Syntax
lognopasswd = boolean;
Valid Values
true | Do not log passwords (or other non-echoed input). |
false | Log all input keystrokes. This setting is the default. |
The initial lognopassword value comes from the settings file. If passwordlogging is set to never, lognopassword is set to true and becomes read-only.
lognopassword = true;
For more information, see passwordloggingprompts.