[jboss-dev-forums] [Design of POJO Server] - Re: Masking passwords in logs
anil.saldhana@jboss.com
do-not-reply at jboss.com
Fri Oct 10 12:04:44 EDT 2008
"adrian at jboss.org" wrote : "mmoyses" wrote : Adrian,
| | the problem is that datasources and JCA login modules are not the only place where passwords are in plain text. There are some mbeans that don't provide a means for encryption, like SuckerPassword from messaging-service.xml, suckerPassword from messaging-jboss-beans.xml or Password from mail-service.xml.
| |
|
| Then these need to be fixed to accept security-domain configurations.
I agree. We need to make these accept Password based encryption (PBE) schemes.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4181568#4181568
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4181568
More information about the jboss-dev-forums
mailing list