I am working with candlepin, at least as it is integrated with Katello/Satellite. I am responsible for securing the configuration and one of the controls is that passwords are not stored in cleartext. It appears that the auto-generated database password in candlepin.conf is in cleartext. Is there any mechanism available to obfuscate this password?