Hello, We are running Jenkins 2.368 on a Rocky 8 Linux server. I was asked to implement SSL onto our Jenkins service, and have done that using a keystore. (I only deal with the server itself as a sysadmin, I do not use Jenkins myself for CI purposes.) This all seems to work okay, but I have noticed two issues:
1) Despite changing the '/etc/sysconfig/jenkins' file setting the JENKINS_PORT to -1 and setting the JENKINS_HTTPS_PORT to 8443, port 8080 is still listened upon by Jenkins. Using the 'lsof' command from a console shows that both ports 8080 and 8443 are listening. The 'System Information' page within Jenkins shows that it is also present on the supplied java command-line (as the --httpPort option). How do we fully disable the use of port 8080? 2) The keystore password is exposed in the 'ps' command output, and in the 'System Information' page found when I log into Jenkins and look under the 'Manage Jenkins' page. This is obviously not secure. Perhaps the password should be stored as part of the Jenkins configuration rather than just passed onto the command-line from the sysconfig file? Is there another way to hide the password? Thanks, John. -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/d1358dfb-9ff8-4214-9745-69bd2ef43ac1n%40googlegroups.com.
