[jboss-jira] [JBoss JIRA] (SASL-30) Update the JBoss Local User mechanism so it is not flagged as a plain text mechanism.
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Tue Apr 24 07:57:18 EDT 2012
[ https://issues.jboss.org/browse/SASL-30?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse resolved SASL-30.
----------------------------------
Resolution: Done
> Update the JBoss Local User mechanism so it is not flagged as a plain text mechanism.
> -------------------------------------------------------------------------------------
>
> Key: SASL-30
> URL: https://issues.jboss.org/browse/SASL-30
> Project: JBoss SASL Provider
> Issue Type: Task
> Security Level: Public(Everyone can see)
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 1.0.1.CR1
>
>
> The tokens exchanged by the jboss local user mechanism are both single use and associated with the specific connection so it is not susceptible to plain text attacks like the plain mechanism.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list