db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Daniel John Debrunner <...@apache.org>
Subject Re: Can Derby authentication be used securely?
Date Tue, 11 Dec 2007 17:17:58 GMT
Rick Hillegas wrote:
> I am trying to figure out how Derby BUILTIN and LDAP authentication can 
> be used without storing a master password in plaintext. I would 
> appreciate the community's advice.
> 

> 2) With LDAP authentication, I think that the master LDAP password 
> (derby.authentication.ldap.searchAuthPW must be stored in plaintext the 
> same way.

If the LDAP server supports anonymous searches then 
derby.authentication.ldap.searchAuthPW is not required.

http://db.apache.org/derby/docs/10.2/tuning/rtunsearchauthpw.html

Dan.


Mime
View raw message