On 8/4/2014 8:17 AM, André Warnier wrote:
Sanaullah wrote:
Hi,
is there a way i ca replace plain JKS keystore password with encrypted
password in tomcat server.xml?
This kind of question comes regularly on this list, I would say 2 or 3
times each year.
Searching the list archives (mentioned in the superb on-line Tomcat
documentation) would provide a number of discussions on the topic.
The basic answer is no, because then Tomcat would need to be able to
decrypt it; and to do that, it would need to know a decryption key;
and to know that, this decryption key would need to be stored
somewhere; loop to the beginning of this paragraph.
Can you help me understand why tomcat doesn't take the approach of
Apache httpd which is to ask the user for the decryption key at startup
time?
--
George Sexton
*MH Software, Inc.*
Voice: 303 438 9585
http://www.mhsoftware.com
