From owner-freebsd-questions  Sat Jun 17 20:28:25 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from eagle.prod.itd.earthlink.net (eagle.prod.itd.earthlink.net [207.217.120.24])
	by hub.freebsd.org (Postfix) with ESMTP id 3F27B37B5A9
	for <freebsd-questions@FreeBSD.ORG>; Sat, 17 Jun 2000 20:28:20 -0700 (PDT)
	(envelope-from cjc@earthlink.net)
Received: from dialin-client.earthlink.net (pool0477.cvx20-bradley.dialup.earthlink.net [209.179.251.222])
	by eagle.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with ESMTP id UAA18016;
	Sat, 17 Jun 2000 20:28:17 -0700 (PDT)
Received: (from cjc@localhost)
	by dialin-client.earthlink.net (8.9.3/8.9.3) id UAA00287;
	Sat, 17 Jun 2000 20:26:53 -0700 (PDT)
Date: Sat, 17 Jun 2000 20:26:22 -0700
From: "Crist J. Clark" <cristjc@earthlink.net>
To: Ryan Thompson <ryan@sasknow.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Securing Perl::DBI connections
Message-ID: <20000617202621.A270@dialin-client.earthlink.net>
Reply-To: cjclark@alum.mit.edu
References: <20000617152830.B220@dialin-client.earthlink.net> <Pine.BSF.4.21.0006171642190.70265-100000@ren.sasknow.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0.1i
In-Reply-To: <Pine.BSF.4.21.0006171642190.70265-100000@ren.sasknow.com>; from ryan@sasknow.com on Sat, Jun 17, 2000 at 04:54:26PM -0600
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Sat, Jun 17, 2000 at 04:54:26PM -0600, Ryan Thompson wrote:

[snip]

> I can generate an encrypted version of the password using any of several
> methods.  The problem, though, exists with the storage of said passwords.
> Even if encrypted, the password must be decrypted (presumably by the
> calling program) before a DBI connection can be made to the server.  So,
> anyone with an iota of knowledge about encryption and Perl could easily
> obtain the password.  Anyone with less than an iota of knowledge could at
> least copy the block of code in question and modify it to make their own
> queries.  Maybe I'm missing the obvious here.  If I AM, I would be happy
> to learn ;-)

I misunderstood what you were trying to do. I was suggesting a
solution for something very different. Sorry for the distraction.
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message