http://www.datastax.com/support-forums/topic/simpleauthenticator-and-simpleauthority Software, Support, and Training for Apache Cassandra en-US Tue, 21 May 2013 17:44:59 +0000 http://bbpress.org/?v=1.0.3 q http://www.datastax.com/support-forums/search.php http://www.datastax.com/support-forums/topic/simpleauthenticator-and-simpleauthority#post-8017 Tue, 18 Dec 2012 18:37:23 +0000 Srini 8017@http://www.datastax.com/support-forums/ <p>Those are demo's to play around, not recommended for production. </p> <p>It is not good to store passwords in a file even if it is encrypted. </p> <p>You can go for LDAP level authentications. </p> http://www.datastax.com/support-forums/topic/simpleauthenticator-and-simpleauthority#post-7864 Thu, 06 Dec 2012 21:46:22 +0000 apollo87 7864@http://www.datastax.com/support-forums/ <p>The 'Authentication and Authorization Configuration' page says that the org.apache.cassandra.auth.SimpleAuthenticator and org.apache.cassandra.auth.SimpleAuthorityare not secure. Could someone explain why? Is general design of putting passwords in a file on the conf directory for implementations of the IAuthorization interface to access not secure? What changes would I have to make to them to make it secure? </p>