What passwords? Ralph
On Aug 19, 2013, at 4:22 AM, Gary Gregory <[email protected]> wrote: > I've seen it done many places: Should we track passwords internally as char[] > instead of String for ivars. > > This prevents Log4j spilling your secrets by accident in a toString to > internal log call. > > Gary > > -- > E-Mail: [email protected] | [email protected] > Java Persistence with Hibernate, Second Edition > JUnit in Action, Second Edition > Spring Batch in Action > Blog: http://garygregory.wordpress.com > Home: http://garygregory.com/ > Tweet! http://twitter.com/GaryGregory
