How to maintain DB passwords ? Nothing in clear text | Community
Skip to main content
A
ashtrick
Level 3
October 16, 2015
Solved

How to maintain DB passwords ? Nothing in clear text

  • October 16, 2015
  • 2 replies
  • 776 views

Hi All,

My application connects to database to get some data. Currently DB connection parameters and passwords are configured through felix console.Now the problem is anyone who has access to felix console can see the password for the DB. How do I prevent this? What is the best way of configuring these parameters?

Thanks

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by gopalKa

The most secure way would be to use X509 user certs and not user id and password(encrypted or unencrypted). Most DBs allow this. For example, for mysql http://www.coresecuritypatterns.com/blogs/?p=970 shows how and for mongodb,http://docs.mongodb.org/manual/tutorial/configure-x509-client-authentication/ shows how to do this.

2 replies

G
Adobe Employee
gopalKaAdobe EmployeeAccepted solution
Adobe Employee
October 16, 2015

The most secure way would be to use X509 user certs and not user id and password(encrypted or unencrypted). Most DBs allow this. For example, for mysql http://www.coresecuritypatterns.com/blogs/?p=970 shows how and for mongodb,http://docs.mongodb.org/manual/tutorial/configure-x509-client-authentication/ shows how to do this.

smacdonald2008
smacdonald2008
Level 10
October 16, 2015

Also - its best practice to use ACLs and not let un-authorized users access to felix console. Only admins should have access to that. 

Terms & ConditionsAccessibility statement

Loading footer...