Security Advisory - minor priority

[Benedikt Heintel]

Dear ispCP Community,

Today we discovered another fault, this time in the ispCP Omega Engine
if DEBUG is set to 1 in ispcp.conf. (System default is 0.)

On Database backup the password for the ispCP database user is shown and
logged in clear text, while logs are world readable.
It is recommended to fix this bug by either set DEBUG to 0 or use the
patch attached to ticket 2411.

You can find the related ticket here:
http://isp-control.net/ispcp/ticket/2411

We apologize for any inconvenience caused.

Best Regards,
Benedikt Heintel

ispCP Omega Project Manager