Q&A - SSL Certificate - password related

Owned by Tomas Tazky (Unlicensed)
Last updated: Apr 16, 2021 by Marian Vidra
1 min read


Q: Can a password be obfuscated or does it have to be in plain text in a key file?

A: No - plain text only,  Yes - password in the file called a key.


Q: Is there a way for the actual password NOT to be a plain text but obfuscated in some way? I did move the file as you suggested and that worked ok. I'll also be working through the option documented under "Add own Certificate" as this will be required after a formal certificate is issued with their private Certificate Authority. I'm going to use a .jks file for step 2, part b as I am the most familiar with Java key stores. It looks like the password would be handled the same way - just in a file called "key". Is this correct?  

A: Nobody has requested the obfuscation of a password. If the issue is that other users are being able to see the password, wouldn't it be sufficient to change the permissions to 700 for the key file (chmod 700 key, assuming the owner will also start the SDK manager)?