Hi Jay, This was my thought. Maybe encrypt the pasword in the DNSless connection and have a key somewhere within a external file. However if someone found the key in this file they could still access it. Any other thoughts on how to overcome this ?
Cheers Neil On Thu, Nov 19, 2009 at 12:40 PM, Jay Ess <li...@netrogenic.com> wrote: > Tompkins Neil wrote: > >> Following my previous email. I've now configured my database connection >> using a ODBC DNSLESS SSL connection. However the problem still remains, >> the >> password is stored in the ASP file in plain text. Does anyone have any >> recommendations on how to overcome this issue ? >> >> > Secure the access to the ASP-source file. > You *could* encrypt it but then you have to store the key for it somewhere > the ASP can access and ..... Catch 22. > > > > -- > MySQL General Mailing List > For list archives: http://lists.mysql.com/mysql > To unsubscribe: > http://lists.mysql.com/mysql?unsub=neil.tompk...@googlemail.com > >
