On Tuesday 21 December 2004 00:03, symbulos partners wrote:
> is it possible to use encrypted passwords in php files, for connecting to a
> database?
>
> We do not like too much the idea of the password being in clear text.
>
> Example
> $link = mysql_connect('localhost', 'mysql_user', 'mysql_password');
>
> 'mysql_password' should be encrypted
Why? It's not going to offer any protection. If I know your encrypted password
and am able to access your database using it there is no reason for me to
know what your cleartext password is. In other words if I am able to read the
file containing your password (whether encrypted or cleartext) then I can
access your database.
--
Jason Wong -> Gremlins Associates -> www.gremlins.biz
Open Source Software Systems Integrators
* Web Design & Hosting * Internet & Intranet Applications Development *
------------------------------------------
Search the list archives before you post
http://marc.theaimsgroup.com/?l=php-general
------------------------------------------
/*
APL is a write-only language. I can write programs in APL, but I can't
read any of them.
-- Roy Keir
*/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
