ESB Admin User's password in clear text
---------------------------------------
Key: ESBJAVA-489
URL: https://wso2.org/jira/browse/ESBJAVA-489
Project: WSO2 ESB
Issue Type: Improvement
Reporter: Jonathan Holmes
Assignee: Asankha Perera
It appears that all ESB admin users password is just sitting in plain text
within server.xml. The password should be hashed for security reasons.
<ESBUsers>
<User>
<Username>admin</Username>
<Password>admin</Password>
<Description>admin</Description>
</User>
<!-- add multiple users
<User>
<Username>esb</Username>
<Password>esb</Password>
<Description>esb</Description>
</User>
-->
</ESBUsers>
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://wso2.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
Esb-java-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/esb-java-dev
