[jira] [Commented] (CONNECTORS-486) Optionally export crawler configuration without passwords

Karl Wright (JIRA) Thu, 28 Jun 2012 07:19:46 -0700

    [ 
https://issues.apache.org/jira/browse/CONNECTORS-486?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13403117#comment-13403117
 ]


Karl Wright commented on CONNECTORS-486:
----------------------------------------

Can you find an algorithm that is supported natively by Java that you would 
consider secure enough?

                
> Optionally export crawler configuration without passwords
> ---------------------------------------------------------
>
>                 Key: CONNECTORS-486
>                 URL: https://issues.apache.org/jira/browse/CONNECTORS-486
>             Project: ManifoldCF
>          Issue Type: Improvement
>          Components: Framework agents process
>            Reporter: Erlend Garåsen
>            Assignee: Erlend Garåsen
>            Priority: Minor
>             Fix For: ManifoldCF 0.7
>
>
> The "org.apache.manifoldcf.crawler.ExportConfiguration" command class is 
> exporting passwords, for instance to the configured Solr server (Solr Output 
> Connector). This may be a security problem if the export file is 
> version-controlled or placed on a public server.
> We should add an extra "no password" argument to the command class in order 
> to skip such passwords.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CONNECTORS-486) Optionally export crawler configuration without passwords

Reply via email to