Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-53474

Add feature to secure clear text passwords in configuration files for service startup in Confluence Data Center

    XMLWordPrintable

Details

    • Suggestion
    • Resolution: Won't Do
    • None
    • None
    • None
    • 1
    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Currently the approved method of starting Synchrony  as a service involves storing the database credentials in clear text in a systemd configuration file. Even if you lock this file down, or assign it as a variable in a users .bash_profile it is not a best practice. Suggesting that some more secure mechanism be provided to deal with this within the application. For example LUKS in RHEL 7 could be used for this purpose, but there needs to be some work in Confluence to support this mechanism. 

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-53085 Move sensitive information out of Synchrony JVM arguments

          • High - High priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              5a0f72662e77 Christopher Bodnar
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: