Return-Path: X-Original-To: apmail-geronimo-dev-archive@www.apache.org Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 795D1662D for ; Thu, 26 May 2011 03:18:31 +0000 (UTC) Received: (qmail 80860 invoked by uid 500); 26 May 2011 03:18:30 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 80613 invoked by uid 500); 26 May 2011 03:18:29 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 80596 invoked by uid 99); 26 May 2011 03:18:28 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 26 May 2011 03:18:28 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=5.0 tests=ALL_TRUSTED,T_RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 26 May 2011 03:18:27 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id 74C83DFDDE for ; Thu, 26 May 2011 03:17:47 +0000 (UTC) Date: Thu, 26 May 2011 03:17:47 +0000 (UTC) From: "Kevan Miller (JIRA)" To: dev@geronimo.apache.org Message-ID: <1099297680.44222.1306379867475.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] [Created] (GERONIMO-5980) Improper encryption/obfuscation of passwords in configuration files MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 Improper encryption/obfuscation of passwords in configuration files ------------------------------------------------------------------- Key: GERONIMO-5980 URL: https://issues.apache.org/jira/browse/GERONIMO-5980 Project: Geronimo Issue Type: Bug Security Level: public (Regular issues) Reporter: Kevan Miller Several users have reported problems starting Geronimo. The cause seems to be improperly encrypted passwords. Plain text passwords will be encrypted/obfuscated in configuration files. A very good hypothesis posed by Michael Peterson is that the problem occurs if you try to start Geronimo with an improperly configured JAVA_HOMEStarting Geronimo without a JAVA_HOME configured may cause passwords to be improperly encrypted. They may end up encrypted as {Simple}null >From an email: {quote} On May 25, 2011, at 9:56 PM, michael.peterson wrote: Ok...I think I see what was happening. When I first installed and tried to run "geronimo.sh run" I didn't have JAVA_HOME set. it failed with a bunch of messages. Then I realized that problem and set JAVA_HOME...but it looks like that time the property files have already been rewritten and the install corrupted. I didn't realize it was happening at the time of course...but since the new install was working I tried to redo the step to get to that broken state. The only way I could achieve that was to remove the JAVA_HOME and try and run geronimo. Does that make sense to you? {quote} -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira