You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Troy Bishop (JIRA)" <ji...@apache.org> on 2011/03/30 21:26:05 UTC
[jira] [Created] (GERONIMODEVTOOLS-732) Server admin password is
written in plain text
Server admin password is written in plain text
----------------------------------------------
Key: GERONIMODEVTOOLS-732
URL: https://issues.apache.org/jira/browse/GERONIMODEVTOOLS-732
Project: Geronimo-Devtools
Issue Type: Bug
Components: eclipse-plugin
Affects Versions: 3.0_M1
Environment: Windows XP, Eclipse 3.6.2 + Geronimo 3.0 server adapter
Reporter: Troy Bishop
I was looking at the persisted form of the Apache Geronimo server within Eclipse (found in workspace\.metadata\.plugins\org.eclipse.wst.server.core\servers.xml) and I saw that the admin password is written in plain text, i.e.
<server cloudIsEnabled="false" hostname="localhost" id="Apache Geronimo v3.0 Server at localhost" inPlaceSharedLib="false" karafShell="false" name="Apache Geronimo v3.0 Server at localhost" runFromWorkspace="false" runtime-id="Apache Geronimo v3.0" selectClasspathContainers="false" server-type="org.apache.geronimo.server.30" server-type-id="org.apache.geronimo.server.30" start-timeout="240" stop-timeout="30" timestamp="7">
<map RMIRegistry="1099" WebConnector="8080" adminID="system" adminPassword="manager" cleanOSGiBundleCache="false" key="geronimo_server_instance_properties" logLevel="--long" maxPings="40" pingDelay="10000" pingInterval="5000" publishTimeout="900000"/>
</server>
I think that password should be encrypted when it is persisted to disk.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Resolved] (GERONIMODEVTOOLS-732) Server admin password is
written in plain text
Posted by "Han Hong Fang (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMODEVTOOLS-732?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Han Hong Fang resolved GERONIMODEVTOOLS-732.
--------------------------------------------
Resolution: Fixed
Fix Version/s: 3.0
3.0-M2
fixed at revision: 1089328
> Server admin password is written in plain text
> ----------------------------------------------
>
> Key: GERONIMODEVTOOLS-732
> URL: https://issues.apache.org/jira/browse/GERONIMODEVTOOLS-732
> Project: Geronimo-Devtools
> Issue Type: Bug
> Components: eclipse-plugin
> Affects Versions: 3.0_M1
> Environment: Windows XP, Eclipse 3.6.2 + Geronimo 3.0 server adapter
> Reporter: Troy Bishop
> Assignee: Han Hong Fang
> Fix For: 3.0-M2, 3.0
>
>
> I was looking at the persisted form of the Apache Geronimo server within Eclipse (found in workspace\.metadata\.plugins\org.eclipse.wst.server.core\servers.xml) and I saw that the admin password is written in plain text, i.e.
> <server cloudIsEnabled="false" hostname="localhost" id="Apache Geronimo v3.0 Server at localhost" inPlaceSharedLib="false" karafShell="false" name="Apache Geronimo v3.0 Server at localhost" runFromWorkspace="false" runtime-id="Apache Geronimo v3.0" selectClasspathContainers="false" server-type="org.apache.geronimo.server.30" server-type-id="org.apache.geronimo.server.30" start-timeout="240" stop-timeout="30" timestamp="7">
> <map RMIRegistry="1099" WebConnector="8080" adminID="system" adminPassword="manager" cleanOSGiBundleCache="false" key="geronimo_server_instance_properties" logLevel="--long" maxPings="40" pingDelay="10000" pingInterval="5000" publishTimeout="900000"/>
> </server>
> I think that password should be encrypted when it is persisted to disk.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Assigned] (GERONIMODEVTOOLS-732) Server admin password is
written in plain text
Posted by "Han Hong Fang (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMODEVTOOLS-732?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Han Hong Fang reassigned GERONIMODEVTOOLS-732:
----------------------------------------------
Assignee: Han Hong Fang
> Server admin password is written in plain text
> ----------------------------------------------
>
> Key: GERONIMODEVTOOLS-732
> URL: https://issues.apache.org/jira/browse/GERONIMODEVTOOLS-732
> Project: Geronimo-Devtools
> Issue Type: Bug
> Components: eclipse-plugin
> Affects Versions: 3.0_M1
> Environment: Windows XP, Eclipse 3.6.2 + Geronimo 3.0 server adapter
> Reporter: Troy Bishop
> Assignee: Han Hong Fang
>
> I was looking at the persisted form of the Apache Geronimo server within Eclipse (found in workspace\.metadata\.plugins\org.eclipse.wst.server.core\servers.xml) and I saw that the admin password is written in plain text, i.e.
> <server cloudIsEnabled="false" hostname="localhost" id="Apache Geronimo v3.0 Server at localhost" inPlaceSharedLib="false" karafShell="false" name="Apache Geronimo v3.0 Server at localhost" runFromWorkspace="false" runtime-id="Apache Geronimo v3.0" selectClasspathContainers="false" server-type="org.apache.geronimo.server.30" server-type-id="org.apache.geronimo.server.30" start-timeout="240" stop-timeout="30" timestamp="7">
> <map RMIRegistry="1099" WebConnector="8080" adminID="system" adminPassword="manager" cleanOSGiBundleCache="false" key="geronimo_server_instance_properties" logLevel="--long" maxPings="40" pingDelay="10000" pingInterval="5000" publishTimeout="900000"/>
> </server>
> I think that password should be encrypted when it is persisted to disk.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira