Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Unresolved
Fix Version/s: None
Component/s: System Administration - Others
Labels:

UIS:
3
Support reference count:
14
Feedback Policy:

We collect Jira feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

Description

NOTE: This suggestion is for JIRA Server. Using JIRA Cloud? See the corresponding suggestion.

Currently when you create a SMTP or POP server in JIRA, the account details (username, password etc) are stored as plaintext in the database and XML backups. We should encrypt/decrypt these passwords to provide some protection from casual observers.

Please see this comment for additional details regarding this issue.

Attachments

Issue Links

is blocked by

JRASERVER-12381 Data anonymiser does not blank out SMTP server username and password

Closed

is duplicated by

JRASERVER-14497 CVS module stores passwords in clrear text

Closed

is related to

JRASERVER-17317 Encrypted passwords in osuser.xml

Closed

JRASERVER-27457 Encrypt LDAP passwords in database

Closed

relates to

CONFSERVER-39954 Encrypt mail passwords in Confluence database

Closed

JRACLOUD-5226 Encrypt mail passwords in JIRA database

Closed

JRASERVER-16205 Anonymise data for MailServers

Closed

PSR-200 Loading...

JOT-56 Loading...

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(4 relates to, 12 mentioned in)

Activity

People

Assignee:: Unassigned

Reporter:: Jeff Turner

Votes:: 36 Vote for this issue

Watchers:: 44 Start watching this issue

Dates

Created:: 15/Nov/2004 3:45 AM

Updated:: 20/Feb/2024 2:37 AM