> From: Bill Wang [mailto:bw57...@gmail.com] > Subject: encrypt the database password
> So which the plain password, end user may get the password directly. Only if you don't bother to protect access to your Tomcat server. And if you don't do that, you've got much, much bigger problems than someone discovering the DB password. > How can create encrypted password within server.xml It's amazing how often this inept question comes up. If you encrypt the password in server.xml, how do you expect Tomcat to open data base connections? Read the FAQ: http://wiki.apache.org/tomcat/FAQ/Password - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org