Hidden password for Database connection ?

andrejx Sep 21, 2001 7:47 PM

Hi, could we have hidden password (better to say its hash) in jboss.jcml configuration file for database pool ?

AX

1. Re: Hidden password for Database connection ?

davidjencks Sep 22, 2001 9:54 AM (in response to andrejx)

Well, no.

You can keep your jboss.jcml/service.xml files in a safe place.

However if you store passwords you need to use encrypted you also need to store the unencryption key and algorithm. If you can hide these from prying eyes you can hide the cleartext password just as well, and with less complexity and false sense of security.
Actions