Hi,
Is it possible to hide the keystore password.
<Connector port="8443" address="${jboss.bind.address}"
maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
scheme="https" secure="true" clientAuth="false"
keystoreFile="server.keystore"
keystorePass="thePassword" sslProtocol = "TLS" />

since the keystore contains the trusted authority is it possible to other users to use the provided password to sign jars all over again?

Thanks