Web Scenarios Utilizing NTLM Authentiction --- Unmasked passwords

XMLWordPrintable

    • Type: Change Request
    • Resolution: Unresolved
    • Priority: Critical
    • None
    • Affects Version/s: 3.2.6
    • Component/s: None
    • None
    • Environment:
      Centos 7 / Zabbix 3.2.6

      Whenever I create a web based scenario and that scenario utilizes a NTLM username and password, the password is not obfuscated with "*'s" and is also not encrypted in the database in any way. This is a HUGE security concern / vulnerability.

            Assignee:
            Unassigned
            Reporter:
            Brad Turnbough
            Votes:
            2 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: