On 17.11.2015 18:28, John Mazzitelli wrote:
1) you can ask the server to give you an agent installer with the
passwords encrypted. If you pass in "encryption-key" when you ask for the
installer the passwords in the installer config file will be encrypted (weakly, but still
encrypted - its more than obfuscation) so you can pass around the installer jar without
having the passwords inside it in clear text. You have to remember to pass that same
encryption key to the installer when you install (using --encryption-key cmdline option)
Any reason *not* to use something stronger? I took a look at the code
and it seems we have all the bits for proper encryption, just not sure
if there's a reason not to use, say, AES for that.
- Juca.