David Kuo
-Original Message-
From: Hardy Merrill [mailto:hmerrill@;redhat.com]
Sent: Tuesday, October 22, 2002 3:55 PM
To: Kuo, David
Cc: 'Hardy Merrill'; Juha-Mikko Ahonen; John Gedeon; [EMAIL PROTECTED]
Subject: Re: Hiding the db password
Kuo, David [[EMAIL PROTECTED]] wrote:
&
Quad/Tech International, Sussex, WI USA
> -Original Message-
> From: John Gedeon [mailto:jgedeon@;qualcomm.com]
> Sent: Tuesday, October 22, 2002 2:46 PM
> To: [EMAIL PROTECTED]
> Subject: RE: Hiding the db password
>
>
> Thanks for the tips guys. I will pos
o
>
> -Original Message-
> From: Hardy Merrill [mailto:hmerrill@;redhat.com]
> Sent: Tuesday, October 22, 2002 3:35 PM
> To: Juha-Mikko Ahonen
> Cc: Hardy Merrill; John Gedeon; [EMAIL PROTECTED]
> Subject: Re: Hiding the db password
>
>
> Juha-Mikko Ahonen [[E
>
> -Original Message-
> From: Hardy Merrill [mailto:hmerrill@;redhat.com]
> Sent: Tuesday, October 22, 2002 3:35 PM
> To: Juha-Mikko Ahonen
> Cc: Hardy Merrill; John Gedeon; [EMAIL PROTECTED]
> Subject: Re: Hiding the db password
>
>
> Juha-Mikko Ahonen [[EMAIL P
Thanks for the tips guys. I will post my solution if any when I get one.
but it seems like someone will always be able to see the passwords...
John
<>< Proverbs 3:5 "Trust in the Lord with all your heart and lean not on
your own understanding;"
EMAIL PROTECTED]
Subject: Re: Hiding the db password
Juha-Mikko Ahonen [[EMAIL PROTECTED]] wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Tuesday 22 October 2002 21:41, Hardy Merrill wrote:
> > Assuming you create a Perl module outside of the webserver's
> &g
Juha-Mikko Ahonen [[EMAIL PROTECTED]] wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Tuesday 22 October 2002 21:41, Hardy Merrill wrote:
> > Assuming you create a Perl module outside of the webserver's
> > document root, the tricky thing is that for cgi scripts, the
> > user that
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tuesday 22 October 2002 21:41, Hardy Merrill wrote:
> Assuming you create a Perl module outside of the webserver's
> document root, the tricky thing is that for cgi scripts, the
> user that the web server is running as needs at least "read"
> access
Assuming you create a Perl module outside of the webserver's
document root, the tricky thing is that for cgi scripts, the
user that the web server is running as needs at least "read"
access to that file that contains the DB passwords.
What platform are you on?
Assuming a *nix platform, I suppose
( 02.10.22 11:02 -0700 ) John Gedeon:
Is there a way to hide the passwords in a file so that perl can still
connect to the db but now allow anyone but me and maybe my supervisor
to see the password?
Not really cleanly.
If you're on a UN*X system, you can use file permissions to minimize
exposur
[SMTP:[EMAIL PROTECTED]]
> Sent: Tuesday, October 22, 2002 2:09 PM
> To: John Gedeon
> Cc: [EMAIL PROTECTED]
> Subject: Re: Hiding the db password
>
> Hi
>
> ( 02.10.22 11:02 -0700 ) John Gedeon:
> > Is there a way to hide the passwords in a file so that perl
Hi
( 02.10.22 11:02 -0700 ) John Gedeon:
> Is there a way to hide the passwords in a file so that perl can still
> connect to the db but now allow anyone but me and maybe my supervisor
> to see the password?
Not really cleanly.
If you're on a UN*X system, you can use file permissions to minimiz
I write/maintain web applications at my job, and several of them are in
perl and use the perl dbi to connect to an oracle db. however, the
passwords are displayed in the files and are accessible by many people
outside of our group (since all the cgi files are on servers accessible by
many peopl
13 matches
Mail list logo
