[jboss-dev-forums] [Design of POJO Server] - Re: Masking passwords in logs
adrian@jboss.org
do-not-reply at jboss.com
Fri Oct 10 12:05:01 EDT 2008
"adrian at jboss.org" wrote : "mmoyses" wrote : Adrian,
| | the problem is that datasources and JCA login modules are not the only place where passwords are in plain text. There are some mbeans that don't provide a means for encryption, like SuckerPassword from messaging-service.xml, suckerPassword from messaging-jboss-beans.xml or Password from mail-service.xml.
| |
|
| Then these need to be fixed to accept security-domain configurations.
Or more accurately, SubjectFactory injection:
https://jira.jboss.org/jira/browse/JBAS-5067
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4181569#4181569
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4181569
More information about the jboss-dev-forums
mailing list