Uploaded image for project: 'ZABBIX FEATURE REQUESTS'
  1. ZABBIX FEATURE REQUESTS
  2. ZBXNEXT-6307

Hidden cert store passwords in Zabbix Java Gateway

    XMLWordPrintable

    Details

    • Team:
      Team A
    • Sprint:
      Sprint 69 (Oct 2020), Sprint 70 (Nov 2020), Sprint 71 (Dec 2020)
    • Story Points:
      1

      Description

      Zabbix Java Gateway supports SSL connections with auth, but currently Java arguments must be like this:

      JAVA_OPTIONS="-Dcom.sun.management.jmxremote.ssl=true -Djavax.net.ssl.keyStore=/var/lib/zabbix/certs/zabbix_java_gateway.keystore -Djavax.net.ssl.keyStorePassword=changeit -Djavax.net.ssl.trustStore=/var/lib/zabbix/certs/zabbix_java_gateway.truststore -Djavax.net.ssl.trustStorePassword=changeit"
      

      It is impossible to hide such password from "ps ax" command output, but Java has com.sun.management.jmxremote.ssl.config.file and com.sun.management.config.file arguments. Zabbix Java Gateway ignores these options and do not use them.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              vso Vladislavs Sokurenko
              Reporter:
              dotneft Alexey Pustovalov
              Votes:
              1 Vote for this issue
              Watchers:
              7 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: