[
https://issues.apache.org/jira/browse/RANGER-1643?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16274512#comment-16274512
]
Endre Kovacs commented on RANGER-1643:
--------------------------------------
As per offline discussions with [~zsombor] :
Moving out those (secret) keys from the `ranger-admin-default-site.xml ` and
storing them in database (as RangerService instances end up in db) may
introduce security concern(s)
* these db rows could possibly be queryable over the network. storing them on a
well guarded ranger-admin node in .xml file may possibly be more secure.
> Handle multiple comma in credentials ...
> ----------------------------------------
>
> Key: RANGER-1643
> URL: https://issues.apache.org/jira/browse/RANGER-1643
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Affects Versions: 0.6.3, 0.7.1
> Reporter: Selvamohan Neethiraj
> Assignee: Endre Kovacs
> Priority: Minor
> Fix For: 1.0.0
>
>
> Currently, PasswordUtils parses the encryption configuration based on the
> presence of a comma character. The actual password itself may have comma
> characters. We should fix this to allow the user with the password or we
> should remove the code that handles the password without having encryption
> configuration as part of the input string.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
