tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Parsons Technical Services" <>
Subject Re: any standart way to keep passwords encripted???
Date Fri, 02 Apr 2004 22:15:10 GMT

> - Being in plain text in server.xml (as configured for tomcat)
Protect the file with permissions.

> - Read the web.xml by a standalone app and encript the password, in my
> connection servlet I read it and decritp it.
> - Have a separate file for each pool, this file,encripted, would contain
> info about each pool.
If I can read the server.xml then I can read your .class file the decrypts
it and thus can still get your password.

> BTW, is there any way to use the same pool for more than one app, using
> tomcat pool configuration ???

Search the archives for both of these subjects as they have been discussed


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message