[Hawkular-dev] more agent installer enhancements
Juraci Paixão Kröhling
jpkroehling at redhat.com
Tue Nov 17 14:06:24 EST 2015
On 17.11.2015 18:28, John Mazzitelli wrote:
> 1) you can ask the server to give you an agent installer with the passwords encrypted. If you pass in "encryption-key" when you ask for the installer the passwords in the installer config file will be encrypted (weakly, but still encrypted - its more than obfuscation) so you can pass around the installer jar without having the passwords inside it in clear text. You have to remember to pass that same encryption key to the installer when you install (using --encryption-key cmdline option)
Any reason *not* to use something stronger? I took a look at the code
and it seems we have all the bits for proper encryption, just not sure
if there's a reason not to use, say, AES for that.
- Juca.
More information about the hawkular-dev
mailing list