Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org Received: (qmail 81639 invoked from network); 19 Aug 2005 18:45:50 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 19 Aug 2005 18:45:50 -0000 Received: (qmail 23489 invoked by uid 500); 19 Aug 2005 18:45:37 -0000 Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org Received: (qmail 22639 invoked by uid 500); 19 Aug 2005 18:45:35 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 22626 invoked by uid 99); 19 Aug 2005 18:45:34 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 Aug 2005 11:45:34 -0700 X-ASF-Spam-Status: No, hits=2.3 required=10.0 tests=DNS_FROM_RFC_ABUSE,DNS_FROM_RFC_POST,FROM_ENDS_IN_NUMS,MSGID_FROM_MTA_HEADER,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of brettparsons81@hotmail.com designates 65.54.161.43 as permitted sender) Received: from [65.54.161.43] (HELO hotmail.com) (65.54.161.43) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 Aug 2005 11:45:53 -0700 Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 19 Aug 2005 11:45:32 -0700 Message-ID: Received: from 65.54.161.203 by by106fd.bay106.hotmail.msn.com with HTTP; Fri, 19 Aug 2005 18:45:32 GMT X-Originating-IP: [65.54.161.203] X-Originating-Email: [brettparsons81@hotmail.com] X-Sender: brettparsons81@hotmail.com From: "Brett Parsons" To: tomcat-user@jakarta.apache.org Subject: Securing Tomcat Context Descriptor Date: Fri, 19 Aug 2005 16:15:32 -0230 Mime-Version: 1.0 Content-Type: text/plain; format=flowed X-OriginalArrivalTime: 19 Aug 2005 18:45:32.0721 (UTC) FILETIME=[2DC87210:01C5A4EE] X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N Hi All, There is a requirement on the server that we have Tomcat 5.0.28 deployed that no username/password information can be stored in plaintext (in the open). Like many people, we are using JNDI datasources in our web application. The datasource connection information (including the database username/password) is stored in the Tomcat Context Descriptor under TOMCATDIR/conf/Catalina/localhost/myApp.xml. Does Tomcat provide a more secure way of storing the connection information stored in these context deployment descriptors? Has anyone else run into the same problem and been able to solve it somehow? Thanks, Brett --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org