Hi everyone,

I'm facing a problem here about password storage in a JVM.
Here's the problem:
An html page sends a login/password to a servlet. This servlet reads the
password through the getParamter method. The getParameter, thus, creates
a String that contains the password in clear text.
I cypher the password and store it for future use.
The problem is that the String that getParameter created is still there
... containing a clear text password. And a memory dump could allow
people to read this password.

My question is : Is there a way to totally discard a String's content
from the JVM's memory?

Thanks for your help.

Fred