Opened 12 years ago
#2316 new defect
CAT 2 V0015637 NAME: DBMS passwords in batch and applic. source code DESCRIPTION: DBMS passwords should not be stored in compiled, encoded or encrypted batch jobs or compiled, encoded or encrypted application source code.
Reported by: | doconnor24 | Owned by: | |
---|---|---|---|
Priority: | highest | Milestone: | OMAR Dec 2012 |
Component: | Algorithms/Functionality | Version: | ossim/OMAR 1.8.14-3 |
Severity: | critical | Keywords: | |
Cc: |
Description
The Vendor will have to be asked if passwords are stored in this manner.
Design DBMS application code and batch job code that is compiled, encoded or encrypted to NOT contain passwords.
Consider alternatives to using password authentication for compiled, encoded or encrypted batch jobs and DBMS application code.
Note:
See TracTickets
for help on using tickets.