lucene-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mano Kovacs (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (SOLR-10307) Provide SSL/TLS keystore password a more secure way
Date Wed, 21 Jun 2017 09:21:00 GMT

     [ https://issues.apache.org/jira/browse/SOLR-10307?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Mano Kovacs updated SOLR-10307:
-------------------------------
    Attachment: SOLR-10307.2.patch

Attaching fix patch. Fix is on {{solr}} by exporting the environment variables.

> Provide SSL/TLS keystore password a more secure way
> ---------------------------------------------------
>
>                 Key: SOLR-10307
>                 URL: https://issues.apache.org/jira/browse/SOLR-10307
>             Project: Solr
>          Issue Type: Improvement
>      Security Level: Public(Default Security Level. Issues are Public) 
>          Components: security
>            Reporter: Mano Kovacs
>            Assignee: Mark Miller
>             Fix For: master (7.0), 6.7
>
>         Attachments: SOLR-10307.2.patch, SOLR-10307.patch, SOLR-10307.patch, SOLR-10307.patch
>
>
> Currently the only way to pass server and client side SSL keytstore and truststore passwords
is to set specific environment variables that will be passed as system properties, through
command line parameter.
> First option is to pass passwords through environment variables which gives a better
level of protection. Second option would be to use hadoop credential provider interface to
access credential store.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org


Mime
View raw message