hi,
looks like you're stuck with your kshell.
how about specifying canonical path to your java executable, e.g.
/opt/bin/java?
or if you're under some unix environment like FreeBSD, you can just use
'md5' or 'sha1' provided by system:
% sha1 -s 'passphrase here'
it will produce the same result
-Original Message-
From: Charlie C.L. King [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 27, 2005 8:12 PM
To: Tomcat Users List; [EMAIL PROTECTED]
Subject: Re: Securing Manager Role
hi,
looks like you're stuck with your kshell.
how about specifying canonical path to your java executable
Is there any way for associating unix user manager to tomcat's manager
rols and have encrypted password?
-Original Message-
From: Mark Thomas [mailto:[EMAIL PROTECTED]
Sent: Wednesday, October 26, 2005 2:14 AM
To: 'Tomcat Users List'; [EMAIL PROTECTED]
Subject: RE: Securing Manager Role
, October 25, 2005 9:44 PM
To: 'Tomcat Users List'; [EMAIL PROTECTED]
Subject: RE: Securing Manager Role
This is not supported because there is simply no point.
If someone can read the tomcat-users.xml file then they
almost certainly own the
server and you have bigger problems than someone
This is not supported because there is simply no point.
If someone can read the tomcat-users.xml file then they almost certainly own the
server and you have bigger problems than someone having access to the manager
app.
Consider if the password was encrypted, where is the decryption key stored?