When using TLS/encryption access to NSS database is protected by a password. It is possible to store the password in a file (pin.txt) on the local file system. user having access to that file can retrieve the clear text password and read sensitive data stored in the NSS database
all version
with pin.txt, an instance with security enabled can start without prompt and pin.txt can be used to read NSS db
Allow (re)start without pin file and without prompt
Metadata Update from @tbordaz: - Issue assigned to tbordaz
Metadata Update from @tbordaz: - Custom field origin adjusted to None - Custom field reviewstatus adjusted to None - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1638875
PR https://pagure.io/389-ds-base/pull-request/50795
Just for the recording this is a set of tests <img alt="keyring_tests.sh" src="/389-ds-base/issue/raw/files/11d5715eb2438495cd37512ec0c8635b22bd9e360e9b31e6a60f406da3ea2669-keyring_tests.sh" />
Metadata Update from @mreynolds: - Issue set to the milestone: 1.4.3
389-ds-base is moving from Pagure to Github. This means that new issues and pull requests will be accepted only in 389-ds-base's github repository.
This issue has been cloned to Github and is available here: - https://github.com/389ds/389-ds-base/issues/3848
If you want to receive further updates on the issue, please navigate to the github issue and click on subscribe button.
subscribe
Thank you for understanding. We apologize for all inconvenience.
Metadata Update from @spichugi: - Issue close_status updated to: wontfix - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.