[jboss-user] [Installation, Configuration & DEPLOYMENT] - Re: security issue with plain text password for jmx console
PeterJ
do-not-reply at jboss.com
Fri Nov 21 13:53:11 EST 2008
You would have to write code to encrypt those files. Basically, extending the UsersRolesLoginModule.
You could store the user names and password in a database. But even then, if the passwords are encrypted, you would have to extend the DatabaseServerLoginModule and override the convertRawPassword to handle the encrypted password.
Or you could connect to an LDAP server. Then no extra coding is necessary and LDAP maintains encrypted passwords.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4191392#4191392
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4191392
More information about the jboss-user
mailing list