I have been looking at a number of scripts and they all seem to use
something like a config.php file where there is a var called something like
$dbpasswd but the password is still clear text. While I understand that the
file only sets vars and it can be put outside the document root so that it
cannot be accessed and you can protect it with permissions and all on the
server, and you can even put a simple if statement to check that the script
it was meant for is loading it. But has anyone done something like
encypting that password rather than leaving it in plan text. Call me
paranoid but I think I would rather play the little bit in overhead to
decypt the password to give myself a slightly safer feel about my database
password.
_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar – get it now!
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
