For Programmers: Free Programming Magazines  


Home > Archive > PHP DB > April 2007 > database password









You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

 

Author database password
Roberto Mansfield

2007-04-03, 7:02 pm

Howdy all,

Just wondering what -- if anything -- people are doing to protect
plaintext database passwords in their PHP scripts. Ultimately, PHP needs
a plaintext password to create the database connection, so it seems that
obfuscation is the best we can achieve on this front. While not really
secure by itself, obfuscation along with other measures (firewall,
privilege separation, file system privileges, etc) can help slow someone
down. So I've been looking into this approach at the moment. Any other
ideas out there?

Thanks,
Roberto
Sponsored Links







Also available: Server administration forum archive | Web Design forum archive | Software forum archive | Hardware reviews archive

Copyright 2008 codecomments.com