Bug ID 467847: passphrase visible in audit log

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP TMOS(all modules)

Fixed In:
11.6.0, 11.5.4 HF3

Opened: Jun 18, 2014

Severity: 2-Critical

Symptoms

With audit logging enabled, you notice that after updating a password for an account it is visible in /var/log/audit

Impact

Password is visible in the audit log.

Conditions

This occurs when audit logging is enabled.

Workaround

Disable audit logging.

Fix Information

The password is no longer logged in the audit log.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips