How do I shut off the pam feature that records the username in /var/log/messages ? Here's a sample: FAILED LOGIN 1 FROM jupiter FOR user1, User not known to the underlying authentication module. It would stink if someone slipped and typed in their password.
This is not conidered a bug because you can either disable this type of logging in /etc/syslog.conf or in any matter, the /var/log/messages is only readable by root.