Loading...

XML

Word

Printable

Type: Suggestion
Resolution: Won't Fix
Fix Version/s: None
Component/s: None
Labels:
- affects-server
Environment:
Stand alone on Linux RH enterprise. Latest Sun JDK.

It's a violation of our campus security policy to allow passwords to be transmitted in plaintext. They must be encrypted. You really need to support better security during the login process by allowing the admin to require SSL to log in.

blocks

CONFSERVER-5418 Plugin resource servlet does not provide headers necessary for caching

Closed

is related to

JRASERVER-15122 Encrypt passwords sent from login portlet/page to server.

Closed

relates to

CONFSERVER-18120 Unable to use HTTPS for login only

Closed

JRASERVER-7250 Support for redirecting from HTTPS to HTTP

Closed

Assignee:: Unassigned
Reporter:: Michael Corn
Votes:: 16 Vote for this issue
Watchers:: 18 Start watching this issue

Created:: 26/Sep/2005 2:56 AM
Updated:: 19/Sep/2019 5:21 AM
Resolved:: 29/Jan/2008 10:35 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates