mentallurg [
https://community.jboss.org/people/mentallurg] commented on the document
"AS7 Password Vault on Windows"
To view all comments on this document, visit:
https://community.jboss.org/docs/DOC-17763#comment-11311
--------------------------------------------------
Hi merlin,
JBoss vault is *not safe*. Please keep it in mind. The vault gives you false feeling of
safety. You *disclose the password* to access the vault via KEYSTORE_PASSWORD. Everyone
can easily decrypt all the passwords you have encrypted.
--------------------------------------------------