Ticket 50070 - new option to store unhashed password only in replication changelog
Bug Description:
The option 'nsslapd-unhashed-pw-switch: nolog' prevents to log
unhashed#user#password in the logs (replication changelog and retroCL).
It could be a security concern to, releasing unhashed password to a ldap
client. A new option is to prevent logging of unhashed password in the
retroCL.
Fix Description:
The fix is to not log in retroCL the unhashed password when the
nsslapd-unhashed-pw-switch is 'nolog' or 'on_only_repl'
https://pagure.io/389-ds-base/issue/50070
Reviewed by: ?
Platforms tested: F27
Flag Day: no
Doc impact: no