Dale,
Thanks for the response. I think the first approach will be
tightening up the files as they exist. If security still has an
issue with that then we would look for a more secure option.
jim
--- In [email protected], "Dale Lutz" <[EMAIL PROTECTED]> wrote:
> Hi Jim,
>
> One idea is to write a program of some kind that outputs lines like:
>
> MACRO _PASS mypassword
>
> To standard output.
>
> Then you can:
>
> INCLUDE !pathToProgram
>
> Which will execute the program and parse whatever comes out of its
> standardoutput. This will be included as if it were in the mapping
file.
> Then later in the mapping file you can dereference the $(_PASS)
macro -- it
> will only be seen internally by FME.
>
> Or if you didn't want to use MACROs, you could just have the
program write
> out:
>
> ORACLE_PASSWORD mypassword
>
> Provided that ORACLE_PASSWORD was the correctly name directive you
wanted to
> set.
>
> Other folks have INCLUDE'd a little file that is in a highly
protected are
> with restricted access, and that little file has the
password/connection
> stuff in it.
>
> If you are on unix, the INCLUDE |could be a shell script of some
kind as
> well.
>
> Re-reading your original post, another option may be to have the
java output
> the passwords in the little file as a rot13 or rot64 encoding of
them, and
> then use a program or shell script to un-rot13 what was passed to
it via the
> INCLUDE | option.
>
> Perhaps correspond with me directly to refine any of these ideas
(or to
> reject them all and we can start again).
>
>
> Dale
>
> --------------------------------------------------------------------
--
> Dale Lutz Safe Software Inc. [EMAIL PROTECTED]
> VP Development Surrey, BC, CANADA phone: (604) 501-
9985
> http://www.safe.com fax: (604) 501-
9965
> --------------------------------------------------------------------
--
>
>
>
>
> > -----Original Message-----
> > From: jgillcrist2002 [mailto:[EMAIL PROTECTED]
> > Sent: Friday, March 25, 2005 9:25 AM
> > To: [email protected]
> > Subject: [fme] password encryption
> >
> >
> >
> >
> > Our system is currently running on UNIX. A Java web application
> > creates a parameter file containing database connection info
> > including passwords. The web app then executes fme from the
command
> > line with the generated parameter file. The passwords in the
> > parameter file are currently clear text. Security requirements
are
> > cracking down and we need to at least encrypt the passwords. Has
> > anyone done this with FME and could suggest a starting point.
> >
> > Thanks
> > jim Gillcrist
> > GIDI program
> > Raytheon
> >
> >
> >
> >
> >
> >
> >
> >
> > Get the maximum benefit from your FME, FME Objects, or
SpatialDirect via
> > our Professional Services team. Visit www.safe.com/services for
details.
> > Yahoo! Groups Links
> >
> >
> >
> >
> >
Get the maximum benefit from your FME, FME Objects, or SpatialDirect via our
Professional Services team. Visit www.safe.com/services for details.
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/fme/
<*> To unsubscribe from this group, send an email to:
[EMAIL PROTECTED]
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
