How to overcome JBoss vault issues including decrypting sensitive passwords?
Issue
- Vault is good for obscuring passwords but not protection against an intruder from obtaining credentials.
- We have noticed that there is code on the internet to decrypt the Vault Password as well as change the keystore password. What actions can we take to prevent this?
Environment
- Red Hat JBoss Enterprise Application Platform (EAP)
- 6.x
- 7.x
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
