I am using JSSE with Tomcat. The default keystore password is changeit. In order to change the default password an entry needs to be made in the Tomcat server.xml. The keystore password is stored in this file in clear text. This seems to be a bit of a security hole. Is there anyway around this? Any ideas or recommendations will be greatly appreciated.
Tim McClure -- To unsubscribe, e-mail: <mailto:tomcat-user-unsubscribe@;jakarta.apache.org> For additional commands, e-mail: <mailto:tomcat-user-help@;jakarta.apache.org>
