How to store password in ldap server using java -


i need store password in ldap server using java code.i have specify of encryption method available ldap while storing password.how it??

1) store password in char[] instead of string strings immutable in java , there no way can erase content of string because modification in string result in new string. strings cached in string pool pose security risk of exposing password in clear text has access memory of java application. accident core dump of java application, generating memory dump in /tmp can put passwords in real threat. using char[] can erase convents setting blank or other character reduces security risk of exposing password. see why char array better string storing password in java more detail

2) use encrypted password in application 1 step further earlier tip, instead of storing password or sensitive information in clear text store them in encrypted or hashed format. reduces risk of exposing password stranger how has access of application memory while performing authentication.

read more: http://javarevisited.blogspot.com/2012/05/best-practices-while-dealing-with.html#ixzz3kgjhhlps

new basicattribute("password", passvalue) 

i think dont want specify ..it automatically encrypt ldap configuration


Comments

Popular posts from this blog

matlab - "Contour not rendered for non-finite ZData" -

delphi - Indy UDP Read Contents of Adata -

javascript - Any ideas when Firefox is likely to implement lengthAdjust and textLength? -