March 9th, 2009, 02:05 AM
mysql_connect password encryption
I am a bit concerned about storing my MySQL password as plain-text in PHP source code while calling php_connect().
Are there any measure or workaround where I can put encrypted password while connecting to my database?
Any help will be much appreciated.
Thanks & regards
March 9th, 2009, 02:36 AM
In God We Trust....Everything else we backup.
March 12th, 2009, 02:08 AM
The one thing the (quite old) article at WebmasterWorld doesn't say is always sanitise the user input or your database will be open to SQL Injection i.e
$userName = mysql_real_escape_string($_POST["username"]);
etc... rather than just passing the raw $_POST data to your query.
By cheyenne1212 in forum Miscellaneous Security Discussions
Last Post: February 1st, 2012, 01:51 PM
By 576869746568617 in forum Cryptography, Steganography, etc.
Last Post: July 10th, 2006, 10:38 PM
By NeonWizard in forum The Security Tutorials Forum
Last Post: August 13th, 2004, 06:54 PM
By Nokia in forum Tips and Tricks
Last Post: June 18th, 2004, 04:24 PM
By E5C4P3 in forum The Security Tutorials Forum
Last Post: June 12th, 2002, 04:54 PM