Hi,
My apologies if this question has been addressed before or if there is already a guide for it, but does anyone know if there is either:
a) a way to encrypt the ufs.xml file (containing usernames / passwords of database connections)
b) a secure alternative to ufs.xml - i.e. passing credentials in at run-time or a secure alternative method that holds database login credentials?
As an organisation we are always reviewing security and having human readable usernames / passwords in text files - even if they are on secure, back-end servers, is increasingly identified as a security issue. I've been asked the question by our security team if there is an alternative but I haven’t found anything in the forums or help files.
Many thanks,
Jez
encrypted passwords in ufs.xml
Moderators: Jon, Steve, Ian, Dave
- Jez
- Ebase User
- Posts: 31
- Joined: Thu Aug 21, 2008 11:03 am
- Location: Hampshire County Council
encrypted passwords in ufs.xml
0 x
--------------------------------------
Jez Hollinshead - Hampshire CC
Jez Hollinshead - Hampshire CC
-
- Moderator
- Posts: 1342
- Joined: Wed Sep 12, 2007 12:49 pm
Jez,
You don't have to use Tomcat database connections defined in ufs.xml. Instead you can use a "pooled connection" - see the Database Connection editor in the designer. This encrypts the database password, but not the userid. All database connections except the Ebase Repository can be configured as a pooled connection.
It is also possible to encrypt the tomcat parameters in ufs.xml, but it's quite difficult. If you Google this, you'll see various suggestions.
Regards
Jon
You don't have to use Tomcat database connections defined in ufs.xml. Instead you can use a "pooled connection" - see the Database Connection editor in the designer. This encrypts the database password, but not the userid. All database connections except the Ebase Repository can be configured as a pooled connection.
It is also possible to encrypt the tomcat parameters in ufs.xml, but it's quite difficult. If you Google this, you'll see various suggestions.
Regards
Jon
0 x
Who is online
Users browsing this forum: No registered users and 4 guests