dhis2-users team mailing list archive

Thread
Date

Re: Encrypt the hibernate.properties file in dhis-live

To: Guy Ekani <constyekani@xxxxxxxx>
From: Bob Jolliffe <bobjolliffe@xxxxxxxxx>
Date: Wed, 22 Oct 2014 10:33:11 +0100
Cc: "dhis2-users@xxxxxxxxxxxxxxxxxxx" <dhis2-users@xxxxxxxxxxxxxxxxxxx>
In-reply-to: <1413967219.90707.YahooMailNeo@web173202.mail.ir2.yahoo.com>

Hi Guy

I am not sure if it really practical to encrypt the hibernate.properties
file.  Though certainly it is very important to protect it which should be
done by placing access control restrictions on it.  Essentially only the
user which is running the tomcat process should have read access to the
file.  This is done by default when using dhis2-tools on ubuntu linux for
example.

Are you using dhis-live in a production server environment?  This is not
generally recommended, but if you are then you should certainly use the
access control mechanisms of your system to protect access to the database
password.

A level of encryption you could apply is to place the file on an encrypted
filesystem, which would protect for example against someone getting access
to the disk..

Regards
Bob

On 22 October 2014 09:40, Guy Ekani <constyekani@xxxxxxxx> wrote:

> Hello everyone,
>
> i would like to know if it's possible to encrypt the hibernate.properties
> file of dhis-live. If Yes, How can i do it?
>
> Sincerely
>
> =========================
> *Guy*
>
>
>
>
> _______________________________________________
> Mailing list: https://launchpad.net/~dhis2-users
> Post to     : dhis2-users@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~dhis2-users
> More help   : https://help.launchpad.net/ListHelp
>
>

References

Encrypt the hibernate.properties file in dhis-live
From: Guy Ekani, 2014-10-22