apache2 password logcheck security issue

apache2 password logcheck security issue

Hello stackoverflowers!
I have a program (zoneminder) that unfortunately logs plain text passwords
into apache2.log. For various reasons this behaviour can't be fixed
without breaking other program functions (the authentication hash function
within zoneminder is broken).
I use logcheck to send me warnings and alerts. logcheck emails the alerts
to me, in my case via msmtp as mail transport agent.
Is there a way I can manipulate the apache2 log entry to obscure the
password? Or a way to pipe the logcheck output or the msmtp email through
a program like 'rpl' in order to replace the plaintext password with a
placeholder (like 'XXXX' or '@@@@')? I not sure if msmtp or logcheck
support pipes - I can't find anything on this in their documentation, and
therefore I don't know if or how this could be set up. I don't want to
loose the entire log line with the password, because it includes other
information of interest.
I would be grateful for any suggestions how to work around this security
issue.
Thanks, Jon