Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
Security
Message
From
08/07/2002 07:01:47
Alex Feldstein
Florida, United States
 
 
To
08/07/2002 01:39:42
E C Teo
Winpro
Batu Pahat, Malaysia
General information
Forum:
Visual FoxPro
Category:
Client/server
Title:
Re: Security
Miscellaneous
Thread ID:
00676014
Message ID:
00676042
Views:
17
>Because we need to supply connection string in order to connect to SQL Server, eg:
>lconn = SQLSTRINGCONNECT("DRIVER=MYSQL;SERVER=192.168.100.180;DATABASE=purchase;UID=uesrid;PWD=1234")
>So anyone can find out the login detail, including user id and passward.
>Does it have any better way to prevent unauthorized party to find the login detail?

Don't build the string with the password in the clear. Use variables and get the password from some encrypted source (dbf/ini/registry/whatever).
SQLSTRINGCONNECT("DRIVER=MYSQL;SERVER=192.168.100.180;DATABASE=purchase;UID=" + ;
lcUID + ";PWD=" + lcPwd)


Alex Feldstein, MCP, Microsoft MVP
VFP Tips: English - Spanish
Website - Blog - Photo Gallery


"Once again, we come to the Holiday Season, a deeply religious time that each of us observes, in his own way, by going to the mall of his choice." -- Dave Barry
Previous
Reply
Map
View

Click here to load this message in the networking platform