I put database user login data in the Torque.properties as torque.dsfactory.default.connection.user = username torque.dsfactory.default.connection.password = userpassword
At first, I think it is quite common practice. Now somebody questioned it for the security reason, saying "Storage of user information in plain text will allow the database to be compromised if web/app server is hacked." It was suggested to Encrypt the database details in the configuration file. Do you think it is a legitimate concern? Do you encrypt such data in the configuration file? Your input is appreciated as always. Jill --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
