Secure passwords in files
encoding and encryption deters the casual observation of passwords in server configuration and property files.
The following topics can be used to add protection for passwords located in files:
- Encoding passwords in files WAS contains some encoded passwords that are not encrypted. The PropFilePasswordEncoder utility is included to encode these passwords.
- Enable custom password encryption we need to protect passwords that are contained in the WAS configuration. We can added protection by creating a custom class for encrypting the passwords.
Encoding passwords in files
Enable custom password encryption
Tuning, hardening, and maintaining security configurations