March 9th, 2009, 03:05 AM
mysql_connect password encryption
I am a bit concerned about storing my MySQL password as plain-text in PHP source code while calling php_connect().
Are there any measure or workaround where I can put encrypted password while connecting to my database?
Any help will be much appreciated.
Thanks & regards
March 9th, 2009, 03:36 AM
In God We Trust....Everything else we backup.
March 12th, 2009, 03:08 AM
The one thing the (quite old) article at WebmasterWorld doesn't say is always sanitise the user input or your database will be open to SQL Injection i.e
$userName = mysql_real_escape_string($_POST["username"]);
etc... rather than just passing the raw $_POST data to your query.
By cheyenne1212 in forum Miscellaneous Security Discussions
Last Post: February 1st, 2012, 02:51 PM
By 576869746568617 in forum Cryptography, Steganography, etc.
Last Post: July 10th, 2006, 11:38 PM
By NeonWizard in forum The Security Tutorials Forum
Last Post: August 13th, 2004, 07:54 PM
By Nokia in forum Tips and Tricks
Last Post: June 18th, 2004, 05:24 PM
By E5C4P3 in forum The Security Tutorials Forum
Last Post: June 12th, 2002, 05:54 PM