activemq-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dejan Bosanac <de...@nighttale.net>
Subject Re: hiding ssl store passwords
Date Fri, 18 Jun 2010 06:07:32 GMT
Hi John,

there's an open feature request to support this

https://issues.apache.org/activemq/browse/AMQ-2460

Maybe you can start looking there.

<https://issues.apache.org/activemq/browse/AMQ-2460>Cheers
--
Dejan Bosanac - http://twitter.com/dejanb

Open Source Integration - http://fusesource.com/
ActiveMQ in Action - http://www.manning.com/snyder/
Blog - http://www.nighttale.net


On Thu, Jun 17, 2010 at 11:39 PM, johnluo1 <johnluo1@gmail.com> wrote:

>
> Hi,
>
> I want to use SSL for my transportConnector. But I don't want the passwords
> to be either stored in activemq.xml or show up in command line.
>
> 1.) If I specify like following, password will be stored as clear text in
> activem.xml
>             <sslContext>
>                <sslContext
>                keyStore="broker.ks" keyStorePassword="password"
>                trustStore="client.ts" trustStorePassword="password"/>
>            </sslContext>
>
> 2.)  If I use SSL_OPTS like following, and if I do a "ps -aef |grep
> activemq", I will see the passwords in command line.
>
> export SSL_OPTS="-Djavax.net.ssl.keyStore=broker.ks
> -Djavax.net.ssl.keyStorePassword=password
> -Djavax.net.ssl.trustStore=client.ts
> -Djavax.net.ssl.trustStorePassword=password"
>
> I have a standalone utility for getting the passwords. What would be the
> easiest way to achieve my goal?
>
> Thanks in advance!!
> John
>
>
> --
> View this message in context:
> http://old.nabble.com/hiding-ssl-store-passwords-tp28919978p28919978.html
> Sent from the ActiveMQ - User mailing list archive at Nabble.com.
>
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message