Howdy,
I'm looking for ways to better enforce user password security through
MySQL. Currently, it does not appear that there are any restrictions on
minimum length, password expiration times or strong password checking.
Other than educating the users directly, is there a way to enforce any
On Sun, 29 Apr 2001, Philippe Louis Houze wrote:
Date: Sun, 29 Apr 2001 10:56:52 -0400
From: Philippe Louis Houze [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: Password security
Hi,
How do you keep MySQL password out of view of visitors when needed in PHP to
access the db
.
Cheers.
-
Johnny Withers
[EMAIL PROTECTED]
p. 601.853.0211
c. 601.209.4985
-Original Message-
From: oltra jean-michel [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 30, 2001 10:03 AM
To: Philippe Louis Houze
Cc: [EMAIL PROTECTED]
Subject: Re: Password security
On Sun
Hi,
How do you keep MySQL password out of view of visitors when needed in PHP to access
the db. The password is in plain english in all the php files, and can be easily
downloaded by anyone.
Philippe
ex:
? mysql_connect(host, user, password);
mysql_select_db(database);
?
How do you keep MySQL password out of view of visitors when needed in
PHP to access the db. The password is in plain english in all the php
files, and can be easily downloaded by anyone.
PHP is parsed so should show the password etc to the world. It's better to
use an include and put that