[
https://issues.apache.org/jira/browse/DIRSERVER-152?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12483997
]
Enrique Rodriguez commented on DIRSERVER-152:
---------------------------------------------
KDC master keys are typically stored in their own file and protected by
filesystem permissions. The KDC master key stash file should provide the
option of password protection.
> Encrypt user keys with server master key
> ----------------------------------------
>
> Key: DIRSERVER-152
> URL: https://issues.apache.org/jira/browse/DIRSERVER-152
> Project: Directory ApacheDS
> Issue Type: New Feature
> Components: kerberos
> Reporter: Enrique Rodriguez
> Assigned To: Enrique Rodriguez
>
> User keys are currently stored in the DIT as plaintext keys, for example, in
> the krb5key. These keys should be encrypted with the server master key. The
> server master key should be stored in the Eve system partition.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
