During a recent security audit, the auditors were able to capture the connection to the SQL server from the confluence application as it is using a clear text connection to the database.
How do I configure confluence not to use a plain text connection to the SQL server?
Is the issue that the database schema name and login creds are in plain text in the confluence.cfg.xml file on disk?
Or are they concerned about the traffic between the application and the database being unencrypted?
If the latter, the JTDS driver and MS SQL Server both support encryption. It's just a matter of setting it up. If the former, there is nothing that is Atlassian supported that will help with this.
Badges are a great way to show off community activity, whether you’re a newbie or a Champion.Learn more
Hi Community, Jessica here from the Confluence Product Marketing team! July’s community challenge is all about sharing pictures — and as an extension of our first post on what ...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs