apoorv.s Posted January 6, 2012 Share Posted January 6, 2012 Hi, I am using PHP-5.2.0 and mysql-5.1.50. I created a ‘config.php’ file (all sensitive information about mysql connection in this file) and placed it in safe directory. My concern is, mysql user password is in plain text. If anybody get access on this file he can see the password /or developers can print the password variable to see the password. How I can keep password encrypted form and how to pass encrypted password to mysqli_connect function? Please help. Link to comment https://forums.phpfreaks.com/topic/254457-encrypted-mysql-password/ Share on other sites More sharing options...
scootstah Posted January 6, 2012 Share Posted January 6, 2012 You can't. And even if you did, if an attacker could gain access to your filesystem all he has to do is include whatever method you used to encrypt it and he has full database access. Link to comment https://forums.phpfreaks.com/topic/254457-encrypted-mysql-password/#findComment-1304721 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.