JBoss Community

Re: Is 7.0.0.Final (Everything) ready and stable for production?

created by Jason Greene in JBoss AS7 Development - View the full discussion

Michael Echevarria wrote:

 

I agree.  Server security is more important than a masked password.  If a bad actor has access to a server, the damage is done, no simple password mask can help that.  Unfortunately, I have a black and white business rule that passwords cannot be stored in plain text.

OK I can sympathize with you then. BTW one of our security devs tells me the SecurityIdentityLoginModule has a fix to be merged shortly. I was speaking to the more general problem of masking all passwords (not just DS)

Reply to this message by going to Community

Start a new discussion in JBoss AS7 Development at Community