You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Tommy Pham <to...@gmail.com> on 2015/07/24 03:39:23 UTC

restriction/limit of keystorePass in server.xml for TC7

Hi everyone,

I know this maybe more of Java than Tomcat but in case it's coded
somewhere... Anyway, is there a limit to number of characters (30 - 50) and
limit to certain characters, symbols included, for the keystorePass?  I
only thing I can find for "keystorePass limit tomcat 7" are how to setup
SSL and enable TLSes only.  I know some of you are thinking why 30+ when
the password is in plain text file...

TIA,
Tommy

Re: restriction/limit of keystorePass in server.xml for TC7

Posted by Christopher Schultz <ch...@christopherschultz.net>.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Tommy,

On 7/23/15 9:39 PM, Tommy Pham wrote:
> I know this maybe more of Java than Tomcat but in case it's coded 
> somewhere... Anyway, is there a limit to number of characters (30 -
> 50) and limit to certain characters, symbols included, for the
> keystorePass?  I only thing I can find for "keystorePass limit
> tomcat 7" are how to setup SSL and enable TLSes only.  I know some
> of you are thinking why 30+ when the password is in plain text
> file...

Tomcat just passes the whole string through to the keystore when
opening it. There should be no restrictions on it. However, you might
want to be very careful with how to enter non-ASCII characters into
your server.xml file if you are using any of those.

- -chris
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org

iQIcBAEBCAAGBQJVs4dXAAoJEBzwKT+lPKRYa7AP/30rfcO0EkAIPRN6jTA3Pi0L
FH3oJ30vaSX1mb01IdhOZw1ZHdtQ7PsLEuaakJuZ5OWeq3i91+tkFJI5KHSLNA+X
o+nLX60yRlI+mjtIvFvxKiNOUA45qteXNIXYulStiAsuMFLxN6CN9GY7SJtNZJhu
0d4Y2wPmRha9unkv5V7309yErRXz8BsJYkocfbvGGktGzfTEPSee16IWkIA6XAGB
EKC30N3RpG+9ShuRaDkkYSdZPAqeNrnD4e4Qrn9FZ45C3IOaU9ih5cb4INekHrop
JZA+LmT/mauk9X8g1obmtQQwj13CZafGMJZdaObuHLkTv7zA4KM2bZEcdA2rCiAH
JSjOKR3ELtroZe8EGkCBj3M1NCpivMOkmjIxlWO1Nk8AfQLY1MNKI1wMfjFpVRa+
4PlOwddyYKqfQZlkJxV++/u5R4xhYuGUo+7sRPEbDrYA2EyIWJFUMokcdomyJYn3
RXC8QWDf1XIletd4PEIKRWWB3f2omxNmcMpuPlrUAo0PwbcQGsGdZYOk900LsoG2
m+1EUDJ7qWNbYwlf/wFYHEyeWyKa+t2KEWzgNxDaHx8SKOCVGm5h4gCE8Qru9xIS
evoJeGFHrUBZTVBnBAY26Gxdz23aV8IvZPv1ZCOk9gA5vTgRxkPtGvb74nUjs/m7
9LIu/PHVADmqecFK04X1
=lPFo
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org