Re: [PHP] 你有宝宝吗?免费送给宝宝的礼物。
在 2018-10-31三的 17:19 +0800,爱宝宝,聪明宝宝,可爱宝宝写道: > 大惊喜,免费送给宝宝的礼物。 > 你有宝宝吗?免费送给宝宝的礼物。 > 乐智小天地体验礼物索取活动,很多免费礼物、玩具哦 > ■ 只要注册,就能索取,快点索取送给宝宝吧 > ■ 只要注册,就能索取,免费索取 DVD光盘10张,快点索取送给宝宝吧 > > http://www.buyersnet.info/google.asp?q=1 > http://www.buyersnet.info/google.asp?q=1 > http://www.buyersnet.info/google.asp?q=1 > http://www.buyersnet.info/google.asp?q=1 > http://www.buyersnet.info/google.asp?q=1 > > > > > advertisement,ban it plz. -- Best regards, Sharl.Jimh.Tsin (From China **Obviously Taiwan INCLUDED**) Using Gmail? Please read this important notice: http://www.fsf.org/campaigns/jstrap/gmail?10073. signature.asc Description: This is a digitally signed message part
[PHP] Placing the masterpassword
Hi all I got a little question about a good application design in PHP. If I use a mysql connection for example, I have to store my mysql-password somewhere in the code. If it's just in the mysql-class, that's not that good, because if somebody changes the functionality, he'd see it. I also can't store it in a text file. Until now, I just created a password class where all the passwords are described and i can get them by a get-function. Where are passwords stored in the big applications? There has to be at least one big masterpassword somewhere - how can I store it safely? How is this problem solved in big systems in production? Thanks for help ;) Regs, Flo.
[PHP] Re: Placing the masterpassword
I've always thought that it was pretty safe to store this kind of material outside of the web-browser accessible path of your host. Of course, you then have to be careful who has access to your site via ftp. Let's see what comes of this question :) -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Placing the masterpassword
On Tue, Nov 01, 2011 at 02:24:05PM +0100, Florian Müller wrote: > > Hi all > I got a little question about a good application design in PHP. > If I use a mysql connection for example, I have to store my mysql-password > somewhere in the code. If it's just in the mysql-class, that's not that good, > because if somebody changes the functionality, he'd see it. > I also can't store it in a text file. Until now, I just created a password > class where all the passwords are described and i can get them by a > get-function. > Where are passwords stored in the big applications? There has to be at least > one big masterpassword somewhere - how can I store it safely? How is this > problem solved in big systems in production? I store things like this in a file above the document root - so not grabbable by URL. Don't store it in the code ... you then end up with the password stored in several places & then difficult to change. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 http://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: http://www.phcomp.co.uk/contact.php #include -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Placing the masterpassword
> > I store things like this in a file above the document root - so not > grabbable by URL. > Don't store it in the code ... you then end up with the password stored in > several > places & then difficult to change. > > -- > Alain Williams > Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT > Lecturer. > +44 (0) 787 668 0256 http://www.phcomp.co.uk/ > Parliament Hill Computers Ltd. Registration Information: > http://www.phcomp.co.uk/contact.php > #include This is what I thought was proper protocol. Though I actually store my sql password in a file that I include in my programs to make the sqlconnect to a database. So - that way I don't have it stored in multiple places. And yes - I use the same pswd for all my databases. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] 你有宝宝吗?免费送给宝宝的礼物。
2011/11/1 Sharl.Jimh.Tsin : > > advertisement,ban it plz. We know what it is, please do not reply to SPAM on the list. Just mark it as SPAM and ignore it in the future. -- Network Infrastructure Manager http://www.php.net/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
