I'm at that stage in application development where I'm forced to tinker with openssl and keytool again. I was surprised to find that I could list and export certs from a JKS key store without entering a password (although it printed a nifty little warning). So, I assume the sole purpose of the store password is to prevent illicit addition or replacement of certs and keys. The password on the keypair is what really protects the private key. Are these assumption correct?
Aucun commentaire:
Enregistrer un commentaire