Plateforme Level Extreme
Abonnement
Profil corporatif
Produits & Services
Support
Légal
English
Security
Message
De
08/07/2002 07:01:47
Alex Feldstein
Floride, États-Unis
 
 
À
08/07/2002 01:39:42
E C Teo
Winpro
Batu Pahat, Malaisie
Information générale
Forum:
Visual FoxPro
Catégorie:
Client/serveur
Titre:
Re: Security
Divers
Thread ID:
00676014
Message ID:
00676042
Vues:
18
>Because we need to supply connection string in order to connect to SQL Server, eg:
>lconn = SQLSTRINGCONNECT("DRIVER=MYSQL;SERVER=192.168.100.180;DATABASE=purchase;UID=uesrid;PWD=1234")
>So anyone can find out the login detail, including user id and passward.
>Does it have any better way to prevent unauthorized party to find the login detail?

Don't build the string with the password in the clear. Use variables and get the password from some encrypted source (dbf/ini/registry/whatever).
SQLSTRINGCONNECT("DRIVER=MYSQL;SERVER=192.168.100.180;DATABASE=purchase;UID=" + ;
lcUID + ";PWD=" + lcPwd)


Alex Feldstein, MCP, Microsoft MVP
VFP Tips: English - Spanish
Website - Blog - Photo Gallery


"Once again, we come to the Holiday Season, a deeply religious time that each of us observes, in his own way, by going to the mall of his choice." -- Dave Barry
Précédent
Répondre
Fil
Voir

Click here to load this message in the networking platform