On Mon, Oct 18, 2021 at 4:21 AM Paula Carboné <[email protected]> wrote:
> Hi, regarding the guacamole.properties file, two parameters are needed > when using a postgresql db:postgresql-username and postgresql-password. > > My question is, do those parameters need to be plain-text? This does not > seem to be secure so, how can I encrypt or hash them? Is this doable? > > Yes, they should be plain text. Even if they were encrypted or hashed, they would have to be done in a reversible way so that the database connection could be made, so at best it would just obscure the credentials. You should protect your guacamole.properties file appropriately :-). -Nick
