>So host your own server. That way nobody but you has access to it. >Then you could store the password wherever you want, unecrypted, and it >wouldn't matter. If you're running an application that's that security >conscious, you shouldn't be using a shared server anyway.
I do run my own server but I know for a fact that even if I harden the server as much as I can there is a chance that someone could gain access to that server. While once they have root on the box they pretty much can do as they like, and my app really does not have a huge security requirement, this is a learning processes for me and I'm always looking for a better/more secure way to do things.
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
