> I disagree. Okay... so ease is subjective and we disagree on which is easier. Either way, I'm still concerned about potentially relaxing an integrity constraint without sufficient justification, even if it is slightly easier.
You've requested my opinion, and my opinion is that stores without this integrity check put users at greater risk and we shouldn't let users shoot themselves in the foot like that. I don't think this risk justifies whatever ease of use comes from avoiding setting a password to add an integrity check to the store (which can be done by running the simple command `keytool -storepasswd -keystore my.truststore`). Even if the risk is small, I think the ease of use benefit is smaller. I'm not convinced that you've made a case that this ease does justify the risks, but I'm willing to hear you out if you wish to make such a case. Otherwise, feel free to proceed with my objection outstanding. I won't veto or block it... I just think it's a bad idea. Even if you do merge this change, I will continue to recommend people use passphrases on their truststores, for whatever extra integrity checking it enables. [ Full content available at: https://github.com/apache/accumulo/pull/646 ] This message was relayed via gitbox.apache.org for [email protected]
