geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dain Sundstrom <>
Subject Re: Deploy tool and user and password security
Date Fri, 15 Jul 2005 15:20:21 GMT
Seams reasonable.

Is there a defacto standard in linux tools that we can copy for the  
file format?


On Jul 14, 2005, at 11:02 PM, wrote:

> Currently if someone specifies a userid and password on the command  
> line
> to the deploy tool, it could be visible to other UNIX users via ps
> commands.
> Should we enable the user to point the deployer to a properties file
> (stored in a secured location) that contains the userid and  
> password. That
> would be more secure for cases where the tool is being called by  
> scripts
> and the userid/password prompting is not desired.
> Our documentation should also remind users about this security issue.
> Does this sound reasonable for a new JIRA task?
> John

View raw message