Sure, Don't store your keystore password, and have an administration page that starts the application. The start page requires the operator to enter the password.
George Sexton MH Software, Inc. http://www.mhsoftware.com/ Voice: 303 438 9585 > -----Original Message----- > From: Shibu Vachery [mailto:[EMAIL PROTECTED] > Sent: Monday, December 26, 2005 5:58 PM > To: users@tomcat.apache.org > Subject: Keystore password in clear text > > Hi, > > Is there a way in tomcat on (Windows / Unix) that we can > avoid the keystore > password being set in clear text in the server.xml file? > > Is there a way that the JVM system parameter " > javax.net.ssl.keyStorePassword" can be passed in to the > tomcat server when > it starts up so that the password is not stored in the > server.xml file? > > I tried modifying catalina.bat to include this parameter but > that did not do > much good. Am I missing something? > > Any help will be much appreciated. > > Thanks, > Shibu. > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
