If you use passwords in configuration files, it is highly advisable not to use them in plain text.

Section Obfuscation already describes a (minimally secure) method for obfuscating passwords.

The following describes a script that can also provide an obfuscated password and additionally offers two other methods (PBE masking and asymmetric encryption with a Java KeyStore).

The Script

The script can be found in folder ./bin and has the name password.bat (Windows) resp. password.sh (Unix/Linux).

You should call it from the installation directory ./ of Lobster_data. A call without further parameters outputs the usage information.

D:\IS_data> bin\password.bat
Usage - java com.ebd.util.security.Password [<user>] <password>
        java com.ebd.util.security.Password -j[o] password [<salt>] [<iterationcount]> [<encpassword>] [<algorithm>]
        java com.ebd.util.security.Password -k alias [<keyalias>] <password>

Note: All outputs of the script are sent to STDERR, including the generated passwords.

The Different Methods

Obfuscated Passwords (via Script) (low security)
Masked Passwords with PBE Encryption (via Script) (low security)
Asymmetrically Encrypted Passwords with Java Keystore (via Script) (high security)