Uploaded image for project: 'Commons DBCP'
  1. Commons DBCP
  2. DBCP-562

Password should not be exposed via JMXBean

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 2.5.0, 2.7.0
    • 2.9.0

    Description

      if a BasicDataSource is created with jmxName set, password property is exposed/exported via jmx and is visible for everybody who is connected to jmx port.

       

      Expectation : Do not export it via BasicDataSourceMXBean Interface

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. DBCP-448 Disable password exposure via JMX.

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link GitHub Pull Request #38

          Activity

            People

              ggregory Gary D. Gregory
              fgdrf Frank Gasdorf
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 2h
                  2h