|
|
|
c-treeRTG V3 now offers improved security around password handling. The c-treeRTG configuration file specified the user password in the clear, which is not acceptable for the security standards in place at many customers.
It is now possible to specify an authorization file in a new <instance authfile="file"> attribute.
The ctcmdset utility is used to create an encrypted password, or settings, file. The plain text form of the file should be in the following format:
; User Id
USERID ADMIN
; User Password
PASSWD <pass>
Be sure to secure your plain text file with appropriate file system access permissions.
Any utility or runtime with access to the encrypted file will connect with permissions assigned to that authorization, so this file should also be protected at an appropriate c-treeRTG usage access level.
If both <instance authfile> and <instance user> are specified, the <instance authfile> takes precedence. If the file specified by <instance authfile> does not exist or it is not accessible, the operation fails immediately and an error is entered in the log.
