APAR status
Closed as program error.
Error description
Problem Statement:
I notice that in the ffdc directory, there are some logs
which contain all configuration of the WebSphere Global
Security including the password in clear text.
Is this (WAS V5) working as designed?
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All WebSphere Application Server users *
* with security enabled. *
****************************************************************
* PROBLEM DESCRIPTION: Passwords are specified in clear text *
* within First Faiilure Data Capture *
* logs. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Passwords are specified in clear text within First Faiilure
Data Capture logs.
Problem conclusion
Reviewed First Faiilure Data Capture code and removed password
logging.
Temporary fix
Temporary fix has been provided
Comments
APAR information |
APAR number |
PQ79848 |
Reported component name |
WAS BASE 5.0 |
Reported component ID |
5630A3600 |
Reported release |
00W |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2003-10-20 |
Closed date |
2003-12-10 |
Last modified date |
2003-12-10 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
R103 PSY |
UP |
R10A PSY |
UP |
R10H PSY |
UP |
R10I PSY |
UP |
R10P PSY |
UP |
R10S PSY |
UP |
R10W PSY |
UP |
|