Uploaded image for project: 'Jira Cloud'
  1. Jira Cloud
  2. JRACLOUD-37356

Clear text password in dbconfig.xml

    XMLWordPrintable

Details

    • Suggestion
    • Resolution: Obsolete
    • None
    • 1

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion.

      Database password and username held in clear text within dbconfig.xml file. JIRA should encrypt or allow integral authentication with database such as using Windows Authentication with MS SQL Server. This helps reduce the surface area for accessing the data.

      Attachments

        Issue Links

          is related to

          Suggestion - JRACLOUD-31004 Encrypt Database Password in dbconfig.xml or use integrated authentication

          • Closed

          Suggestion - JRASERVER-37356 Clear text password in dbconfig.xml

          • Closed

          Activity

            People

              Unassigned Unassigned
              457085776fa5 Joel Dyer
              Votes:
              4 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: