Uploaded image for project: 'Geronimo'
  1. Geronimo
  2. GERONIMO-766

Provide a more secure way for UNIX scripts to pass userid and password to deploy tool

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 1.0-M4, 1.0-M5
    • 1.0
    • deployment
    • None

    Description

      Currently if someone specifies a userid and password on the command line to the deploy tool, it could be visible to other UNIX users via ps commands.

      Should we enable the user to point the deployer to a properties file stored in a secured location) that contains the userid and password? That would be more secure for cases where the tool is being called by scripts and the userid/password prompting is not desired.

      Our documentation should also remind users about this security issue.

      See mail dev list thread "Deploy tool and user and password security"

      http://marc.theaimsgroup.com/?t=112140739500001&r=1&w=2

      Attachments

        Issue Links

          relates to

          New Feature - A new feature of the product, which has yet to be developed. GERONIMO-776 Support user-specific properties through an individual property file

          • Major - Major loss of function.
          • Closed

          Activity

            People

              johnrsisson John Sisson
              johnrsisson John Sisson
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: