On 29/10/2010 10:19, 彬 乔 wrote:
> Dears,
>
> We are using Tomcat 5.5.20 in a RHEL 64bit box. The application running on it
> is a financial system. An internal audit indicated that we should not use
> plain text username and password in the server.xml, as:
>
> username="user"
> passwor
It is possible to define the element as an entity in server.xml:
|http://somewhere.com/resource.xml";>|
and then replace the Resource element with the entity:
&|secure_resource
Because the entity resolves to an external source, this source can be
generated dynamically, by a script for example.
Dears,
We are using Tomcat 5.5.20 in a RHEL 64bit box. The application running on it
is a financial system. An internal audit indicated that we should not use plain
text username and password in the server.xml, as:
Is there a way to use encrypted username and password in the server.xml file?
