Uploaded image for project: 'ZABBIX FEATURE REQUESTS'
  1. ZABBIX FEATURE REQUESTS
  2. ZBXNEXT-6307

Hidden cert store passwords in Zabbix Java Gateway

    XMLWordPrintable

Details

    • Team A
    • Sprint 69 (Oct 2020), Sprint 70 (Nov 2020), Sprint 71 (Dec 2020)
    • 1

    Description

      Zabbix Java Gateway supports SSL connections with auth, but currently Java arguments must be like this:

      JAVA_OPTIONS="-Dcom.sun.management.jmxremote.ssl=true -Djavax.net.ssl.keyStore=/var/lib/zabbix/certs/zabbix_java_gateway.keystore -Djavax.net.ssl.keyStorePassword=changeit -Djavax.net.ssl.trustStore=/var/lib/zabbix/certs/zabbix_java_gateway.truststore -Djavax.net.ssl.trustStorePassword=changeit"
      

      It is impossible to hide such password from "ps ax" command output, but Java has com.sun.management.jmxremote.ssl.config.file and com.sun.management.config.file arguments. Zabbix Java Gateway ignores these options and do not use them.

      Attachments

        Issue Links

          Activity

            People

              vso Vladislavs Sokurenko
              dotneft Alexey Pustovalov
              Votes:
              1 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: