Our application reads login/password information to access the database and ftp servers in an xml file (so that they can be manually changed). The file is then packaged with the ear file before being deployed. This is clearly not secure. What is the best approach to securely store these credentials? I was thinking we could have an administration page for the application where the administrator can manage those passwords and store them in a safe place. Then the application server will be able to read them and use them to access the db and ftp servers.
Thanks, Ben View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3847018#3847018 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3847018 ------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
