directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Enrique Rodriguez (JIRA)" <j...@apache.org>
Subject [jira] Commented: (DIRSERVER-152) Encrypt user keys with server master key
Date Mon, 26 Mar 2007 01:51:32 GMT

    [ https://issues.apache.org/jira/browse/DIRSERVER-152?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12483997
] 

Enrique Rodriguez commented on DIRSERVER-152:
---------------------------------------------

KDC master keys are typically stored in their own file and protected by filesystem permissions.
 The KDC master key stash file should provide the option of password protection.


> Encrypt user keys with server master key
> ----------------------------------------
>
>                 Key: DIRSERVER-152
>                 URL: https://issues.apache.org/jira/browse/DIRSERVER-152
>             Project: Directory ApacheDS
>          Issue Type: New Feature
>          Components: kerberos
>            Reporter: Enrique Rodriguez
>         Assigned To: Enrique Rodriguez
>
> User keys are currently stored in the DIT as plaintext keys, for example, in the krb5key.
 These keys should be encrypted with the server master key.  The server master key should
be stored in the Eve system partition.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message