Details

    • Type: New Feature New Feature
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 2.0.0-RC1
    • Fix Version/s: 2.0.0-RC1
    • Component/s: None
    • Labels:
      None

      Description

      User keys are currently stored in the DIT as plaintext keys, for example, in the krb5key. These keys should be encrypted with the server master key. The server master key should be stored in the Eve system partition.

        Activity

        Enrique Rodriguez created issue -
        Alex Karasulu made changes -
        Field Original Value New Value
        Fix Version/s 0.4.0 [ 11007 ]
        Alex Karasulu made changes -
        Component/s kerberos [ 12310716 ]
        Key DIRKERBEROS-10 DIRSERVER-152
        Component/s Kerberos Protocol Provider [ 11495 ]
        Fix Version/s 0.4.0 [ 11007 ]
        Type Improvement [ 4 ] New Feature [ 2 ]
        Project Directory Kerberos [ 10593 ] ApacheDS [ 12310260 ]
        Hide
        Enrique Rodriguez added a comment -

        KDC master keys are typically stored in their own file and protected by filesystem permissions. The KDC master key stash file should provide the option of password protection.

        Show
        Enrique Rodriguez added a comment - KDC master keys are typically stored in their own file and protected by filesystem permissions. The KDC master key stash file should provide the option of password protection.
        Hide
        Emmanuel Lecharny added a comment -

        Let's try to fix this for 2.0

        Show
        Emmanuel Lecharny added a comment - Let's try to fix this for 2.0
        Emmanuel Lecharny made changes -
        Fix Version/s 2.0.0 [ 12312396 ]
        Christine Koppelt made changes -
        Project Directory ApacheDS [ 12310260 ] Directory Kerberos [ 12310910 ]
        Key DIRSERVER-152 DIRKRB-20
        Component/s kerberos [ 12310716 ]
        Fix Version/s 2.0.0 [ 12312396 ]
        Emmanuel Lecharny made changes -
        Affects Version/s 2.0.0-RC1 [ 12315256 ]
        Emmanuel Lecharny made changes -
        Fix Version/s 2.0.0-RC1 [ 12315256 ]

        Error rendering 'com.atlassian.jirafisheyeplugin:fisheye-issuepanel'. Please contact your JIRA administrators.

          People

          • Assignee:
            Enrique Rodriguez
            Reporter:
            Enrique Rodriguez
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Due:
              Created:
              Updated:

              Development