Bug 577033

Summary: Obfuscate the password to the RHQ database as stored on the filesystem
Product: [Other] RHQ Project Reporter: Charles Crouch <ccrouch>
Component: No ComponentAssignee: RHQ Project Maintainer <rhq-maint>
Status: CLOSED CURRENTRELEASE QA Contact: Corey Welton <cwelton>
Severity: urgent Docs Contact:
Priority: urgent    
Version: unspecifiedCC: dlackey, hbrock
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2010-08-04 14:06:51 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---
Bug Depends On: 535601, 579529, 579824, 589351    
Bug Blocks: 577011    

Description Charles Crouch 2010-03-25 21:44:14 UTC
Right now we store the password the RHQ Server uses to connect its database in clear text in rhq-server.properties. We should move to obfuscate this using the standard process for jboss as datasources.

Things to do:
-Do the development for this change for both new and upgrading users
-Doc this change, and any impact on people upgrading from unobfuscated to obfuscated versions
-QE new and upgraded servers, plus test the scripts for when the db password changes and a user has to update the password after install.

Comment 3 Corey Welton 2010-08-04 14:06:51 UTC
Closing these trackers.