[
https://issues.apache.org/jira/browse/DERBY-6234?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13671549#comment-13671549
]
Rick Hillegas edited comment on DERBY-6234 at 5/31/13 3:31 PM:
---------------------------------------------------------------
Note that this includes removing the Reference Guide material on the following
properties:
derby.user.UserName
Although these properties have the builtin name in them, they can also be used
to configure the behavior of password encryption for NATIVE authentication. We
should probably still continue to document these:
derby.authentication.builtin.algorithm
derby.authentication.builtin.iterations
derby.authentication.builtin.saltLength
was (Author: rhillegas):
Note that this includes removing the Reference Guide material on the
following properties:
derby.authentication.builtin.algorithm
derby.authentication.builtin.iterations
derby.authentication.builtin.saltLength
derby.user.UserName
> Remove references to BUILTIN authentication from the user guides
> ----------------------------------------------------------------
>
> Key: DERBY-6234
> URL: https://issues.apache.org/jira/browse/DERBY-6234
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.11.0.0
> Reporter: Rick Hillegas
> Assignee: Kim Haase
>
> BUILTIN authentication is a scheme suitable only for regression tests. Many
> security problems make it inappropriate for production use. To avoid
> confusion and prevent users from selecting this insecure authentication
> scheme, we should remove references to it from our user documentation.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
