Details
-
Improvement
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Fixed
-
None
-
Platform: All, OS: All
Description
Proxy authentication credentials today are weakly encrypted, so anybody can
reverse engineering to view the proxy's password. This problem appears to user
as in the issue #4000. So, to avoid such security flaws, it should have an
option encrypt password with a "Master Password" (like Firefox does).
Code changed in jenkins
User: Nicolas De Loof
Path:
changelog.html
http://jenkins-ci.org/commit/jenkins/005b75d6383a21bc1fa12a017a299ec179dc50b7
Log:
[FIX JENKINS-4002] [FIX JENKINS-4000] encrypr proxy credentials