db-derby-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Van Couvering" <da...@vancouvering.com>
Subject Re: User/password encryption and deployment
Date Mon, 18 Jun 2007 01:14:38 GMT
Oh, I get it now, 10.3 will add support for SSL.  But this will
encrypt all network traffic.  If you just want to encrypt the
password, you have to use the existing password encryption
functionality (either ENCRYPT or STRONG SUBSTITUTION), right?

And for 10.2, there is no SSL support, right?

David

On 6/16/07, Andrew McIntyre <mcintyre.a@gmail.com> wrote:
> On 6/15/07, Bill Shannon <bill.shannon@sun.com> wrote:
> >
> > I think the idea is to protect the communication between the client
> > and the server so that passwords aren't sent in the clear.  None of
> > the data being stored in the database is being encrypted, just the
> > client/server communication.
> >
> > It *is* 2007.  Isn't this pretty much standard by now?
>
> See the discussion in http://issues.apache.org/jira/browse/DERBY-65
>
> SSL is the recommended alternative to using the secure password
> protocol defined by the DRDA specification. Bernt Johnsen worked on
> this for 10.3, due out shortly, and it appears to be complete:
>
> https://issues.apache.org/jira/browse/DERBY-2108
>
> andrew
>

Mime
View raw message