Uploaded image for project: 'Qpid'
  1. Qpid
  2. QPID-7128

[Java Broker] Add SystemTest that scans all output for occurrance of a well known password

    XMLWordPrintableJSON

Details

    • Test
    • Status: Open
    • Minor
    • Resolution: Unresolved
    • None
    • None
    • Broker-J, Java Tests
    • None

    Description

      By setting a easily identifiable (random) well known password we can gain some level of confidence that we do not accidentally leak it in a plaintext way be scaning all output (TRACE broker & client logs, STDOUT, STDERR, config files) for the occurrence of that password.
      Additionally, we could scan for unsalted hashes (SHA1, SHA2, MD5).

      Attachments

        Activity

          People

            Unassigned Unassigned
            lorenz.quack Lorenz Quack
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: