SMTP Server problem and security issue

SGolbertSGolbert RapidMiner Certified Analyst, Member Posts: 344 Unicorn
edited November 2018 in Help

While trying to setup my RapidMiner Server to use the SMTP server of my GMail account (which didn't succeed by the way), I explored the standalone.xml file and found the password to my email in plain text!!

 

This is quite an issue! I won't try to use the SMTP server until my password can be stored safely.

Tagged:

Best Answer

Answers

  • Marco_BoeckMarco_Boeck Administrator, Moderator, Employee, Member, University Professor Posts: 1,993 RM Engineering

    Hi,

     

    this is indeed a property of the underlying JBoss Application Server.

    You can however use a Java keystore mechanism to move the password in there. However then you can read the keystore because JBoss needs to know the password of the keystore (how else to get the password from it?).

     

    So that only moves the security issues. If that's something you prefer, please see this article here: https://developer.jboss.org/wiki/JBossAS7SecuringPasswords

     

    Regards,

    Marco

  • SGolbertSGolbert RapidMiner Certified Analyst, Member Posts: 344 Unicorn

    Hi Ingo, Marco,

     

    I think setting up a local server is a good option, it's something I wanted to try out anyway. Thank you for your answers!

Sign In or Register to comment.