That hasn't got anything to do with tomcat. You should either be using an encoding scheme at code level, or if you feel your application-to-database link is secure, use database in-built methods to encode/decode the passwords.I don't know how good ole' Oracle does it, but in mySQL there are functions like 'encrypt','des-encrypt','password' etc.
Yiannis -----Original Message----- From: amit varshney [mailto:[EMAIL PROTECTED] Sent: 27 January 2004 09:07 To: tomcat Subject: help: want to encrypt Tomcat user passwords I am using jdbcrealm to store the username and passwords in the Oracle 9I database. But th passwords are stored as plain Texts. I want to encrypt the passwords. How can I do it? Is there any InBuilt feature in Tomcat? Thanx in advance Amit Varshney ------------------------------------------------- Still single? Click here to find the perfect match. http://www.bharatmatrimony.com/cgi-bin/bmclicks1.cgi?141 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] ________________________________________________________________________ This e-mail has been scanned for all viruses by Star Internet. The service is powered by MessageLabs. Note:__________________________________________________________________ This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please immediately delete it and all copies of it from your system, destroy any hard copies of it and notify the sender. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. Jaguar Freight Services and any of its subsidiaries each reserve the right to monitor all e-mail communications through its networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorized to state them to be the views of any such entity. ________________________________________________________________________ This e-mail has been scanned for all viruses by Star Internet. The service is powered by MessageLabs.