Comments (5)
Requirements:
Private keys that are protected with a password should be able to have that password changed.
Outstanding questions:
- What command line parameters to use for specifying a password change?
- Should this operation update the configuration and then autostart the application, like the new key generation does?
from tessera.
Answers to above questions:
a)
Use separate CLI options that specify:
- The private key file to modify (inline changes will not be supported currently)
- Provide the old password (if the key was locked) either directly or in a file
- Provide argon options for that override the defaults
--key.pwdupdate.keyfile <filepath> [ --key.pwdupdate.old <oldpass> | --key.pwdupdate.pwdfile <passwordFile> ] [--key.pwdupdate.argon <iterations> <memory> <parallelism> ]
b)
This operation should overwrite the old key file as the only destructive operation. Updating the configuration with the new password (either the inline password list or the password file) is to be left to the end user.
from tessera.
The update part can be a single flag and the same options can be used .
--update-passwords or whatever the action is..
from tessera.
Using:
--keys.passwordFile
--keys.passwords
--keys.keyData.privateKeyPath
--keys.keyData.config.data.aopts.algorithm
--keys.keyData.config.data.aopts.iterations
--keys.keyData.config.data.aopts.memory
--keys.keyData.config.data.aopts.parallelism
Although they are longer and potentially less clear, they are already defined properties that can be interpreted in the context of updating passwords (instead of the normal case of overriding the configuration file).
from tessera.
Implemented and the wiki updated.
from tessera.
Related Issues (20)
- P2P unable to publish payload in batch HOT 1
- Frequent Connection Close issues in Tessera to MySQL DB HOT 2
- Release Tessera V. 22.1.6 HOT 1
- Update jakarta.el dependency HOT 4
- Unable to install binary distribution HOT 2
- Tessera using the wrong address when config is set to port 0 HOT 2
- tessera release 22.10.0 HOT 2
- Tessera connection to external DB using Managed Service Identity
- remove snakeyaml suppression when it's addressed
- Fetch tessera secrets from AWS KMS using IAM roles HOT 2
- Build failed by JaCoCo
- tessera 22.10.0 is having vulnerabilities for libexpat, login and passwd libraries HOT 2
- Tessera AWS Secret Manager integration HOT 1
- Secure Tessera DB password in config
- Typo on frontpage
- I can't find the /bin folder for installation as it says in the procedure HOT 1
- Trivy scan shows critical vulnerability with snakeyaml HOT 2
- get error on 'eth.getPrivateTransaction' HOT 1
- The latest tag 23.4.0 is not in master branch HOT 1
- JSON log format problem
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from tessera.