[
https://issues.apache.org/jira/browse/SOLR-8897?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16087226#comment-16087226
]
Marcel Berteler commented on SOLR-8897:
---------------------------------------
Issue still persistent in version 6.6.0.
When using obfuscated passwords, starting SOLR in stand alone mode results in
errors, although it does seem to start and has the correct certificate when
browsing the Admin UI.
INFO - 2017-07-14 13:50:30.105;
org.apache.http.impl.client.DefaultRequestDirector; Retrying connect to
{s}->https://localhost:443
INFO - 2017-07-14 13:50:30.108;
org.apache.http.impl.client.DefaultRequestDirector; I/O exception
(java.net.SocketException) caught when connecting to
{s}->https://localhost:443: java.security.NoSuchAlgorithmException: Error
constructing implementation (algorithm: Default, provider: SunJSSE, class:
sun.security.ssl.SSLContextImpl$DefaultSSLContext)
> SSL-related passwords in solr.in.sh are in plain text
> -----------------------------------------------------
>
> Key: SOLR-8897
> URL: https://issues.apache.org/jira/browse/SOLR-8897
> Project: Solr
> Issue Type: Improvement
> Components: scripts and tools, security
> Reporter: Esther Quansah
>
> As per the steps mentioned at following URL, one needs to store the plain
> text password for the keystore to configure SSL for Solr, which is not a good
> idea from security perspective.
> URL:
> https://cwiki.apache.org/confluence/display/solr/Enabling+SSL#EnablingSSL-SetcommonSSLrelatedsystemproperties
>
> (https://cwiki.apache.org/confluence/display/solr/Enabling+SSL#EnablingSSL-SetcommonSSLrelatedsystemproperties)
> Is there any way so that the encrypted password can be stored (instead of
> plain password) in solr.in.cmd/solr.in.sh to configure SSL?
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
