During a recent security audit, the auditors were able to capture the connection to the SQL server from the confluence application as it is using a clear text connection to the database.
How do I configure confluence not to use a plain text connection to the SQL server?
Is the issue that the database schema name and login creds are in plain text in the confluence.cfg.xml file on disk?
Or are they concerned about the traffic between the application and the database being unencrypted?
If the latter, the JTDS driver and MS SQL Server both support encryption. It's just a matter of setting it up. If the former, there is nothing that is Atlassian supported that will help with this.
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG