8 Replies Latest reply on Feb 7, 2012 10:56 AM by Andy Taylor

    Encrypting keystore password?

    Ed Keen Newbie

      I have successfully created an SSL acceptor (within JBoss AS 7.1), as follows:

       

                          <acceptor name="netty-ssl-acceptor">

                              <factory-class>org.hornetq.core.remoting.impl.netty.NettyAcceptorFactory</factory-class>

                              <param key="host" value="localhost"/>

                              <param key="port" value="5446"/>

                              <param key="ssl-enabled" value="true"/>

                              <param key="key-store-path" value="/path/to/jms.keystore"/>

                              <param key="key-store-password" value="password"/>

                              <param key="trust-store-path" value="/path/to/jms.truststore"/>

                              <param key="trust-store-password" value="password"/>

                          </acceptor>

       

      As you can see, the key-store-password and trust-store-password are in clear text.  My company has a policy against storing any passwords in files in clear text.  Is there a way to encrypt these?  Or is there a way I can extend the default acceptor class?

       

      Thanks,

      Ed Keen