[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Newsgroup Home]
[news.eclipse.tools.buckminster] Re: Hudson Plugin for Buckminster
Markus Kuppe schrieb:
Johannes Utzig wrote: 
Hi Markus,

you mean the output in the build log that prints out the command log?
I added that to make it clear what's actually invoked (in case there are
problems), but I see, that's pretty bad for passwords...
Would you prefer to not print the command line, or to have an option if
it should be printed or not? Maybe coupled with the log level? If the
log level is set to 'Debug', the command line is printed to the log,
otherwise not.


That sounds like a usable workaround. But I guess eventually only key
auth would solve the problem. Having my password stored in clear text
somewhere in the Hudson config doesn't feel secure either.

Markus 

Hi Markus,

all I can do in the plugin is to not print the command line invocation if that helps you, key auth would need to be implemented on the buckminster side.
If storing the password in the hudson config is safe or not depends on the hudson security settings and the file permissions on the hudson config files (and file system encryption).
Isn't it kind of unusal that a build server uses actual credentials instead of having its own?

Best regards,
Johannes