accumulo-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From mmil...@apache.org
Subject [accumulo-website] branch master updated: Update crypto admin based on recent changes
Date Fri, 12 Oct 2018 18:33:32 GMT
This is an automated email from the ASF dual-hosted git repository.

mmiller pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/accumulo-website.git


The following commit(s) were added to refs/heads/master by this push:
     new 36cd7b4  Update crypto admin based on recent changes
36cd7b4 is described below

commit 36cd7b41293cb84ed4cdb8de0b2f87ea96be63c0
Author: Mike Miller <mmiller@apache.org>
AuthorDate: Fri Oct 12 14:31:50 2018 -0400

    Update crypto admin based on recent changes
---
 _docs-2-0/administration/crypto.md | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/_docs-2-0/administration/crypto.md b/_docs-2-0/administration/crypto.md
index 74de348..bbfc834 100644
--- a/_docs-2-0/administration/crypto.md
+++ b/_docs-2-0/administration/crypto.md
@@ -19,14 +19,12 @@ class name of the service which will perform crypto on RFiles and WALs.
 instance.crypto.service=org.apache.accumulo.core.security.crypto.impl.AESCryptoService
 ```
 Out of the box, Accumulo provides the `AESCryptoService` for basic encryption needs.  This
class provides AES encryption 
-with Galois/Counter Mode (GCM) for RFiles and Cipher Block Chaining (CBC) mode for WALs.
 The additional properties 
-below are required by this crypto service to be set using the {% plink instance.crypto.opts.*
%} prefix.
+with Galois/Counter Mode (GCM) for RFiles and Cipher Block Chaining (CBC) mode for WALs.
 The additional property
+below is required by this crypto service to be set using the {% plink instance.crypto.opts.*
%} prefix.
 ```
-instance.crypto.opts.key.provider=uri
 instance.crypto.opts.key.location=file:///secure/path/to/crypto-key-file
 ```
-The first property tells the crypto service how it will get the key encryption key.  The
second property tells the service 
-where to find the key.  For now, the only valid values are "uri" and the path to the key
file. The key file can be 16 or 32 bytes. 
+This property tells the crypto service where to find the file containing the key encryption
key. The key file can be 16 or 32 bytes.
 For example, openssl can be used to create a random 32 byte key:
 ```
 openssl rand -out /path/to/keyfile 32


Mime
View raw message