[Tutor] How to obfuscate a database password. (fwd)

Danny Yoo dyoo at hkn.eecs.berkeley.edu
Wed Apr 20 05:05:06 CEST 2005



---------- Forwarded message ----------
Date: Tue, 19 Apr 2005 19:47:20 -0500
From: David Driver <count0.djd at gmail.com>
To: Danny Yoo <dyoo at hkn.eecs.berkeley.edu>
Subject: Re: [Tutor] How to obfuscate a database password.

I am not necessarily talking about passwords for users but about the
password that is used for connecting to the database. In a compiled
language you would have to look pretty hard in a dll to find where the
password had been encoded. As you point out there will be users inside
of the application. Their passwords will be hashed and stored in the
database. That is relatively easy to execute. But the password that
the application uses to connect to the database is going to be stored
somewhere in the code.



More information about the Tutor mailing list