That's a really cool idea. I've been troubled with that problem also.
Does anyone know if it matters how long the key is? Will a longer key
offer better encryption? Or could it simply be a couple of words that
an administrator could remember?
How does apache do it? Wouldn't the certificate have to sit somewhere
on the machine? How does that get into memory?
Steve
Paul Black wrote:
>
> Thanks Jason,
>
> I decided to go for the general solution and used the URLEncodedFormat
> function to allow the encrypted values to be stored in a varchar(64) field in
> mysql.
>
> Next step is to work out the best way of securing the key value, keeping it in
> a file doesn't seem like a good idea. Is it possible to get the CF server to
> prompt for the key value when it starts up? This way the key would only be
> stored in memory while CF was running. This would be similar to the approach
> used by Apache with encrypted certificates.
>
> Jason Brooke wrote:
> >
> > > When I encrypt a pretend credit card number, I get a string as follows:
> > >
> > > 3)I?.#MU\UL&M7__,"8 5$R/-ZP!!
> > >
> > > I then store this value in a MySQL database, the problem is that the
> > encrypted
> > > string (tinyblob) is stored as follows:
> > >
> > > 3)I?.#MUUL&M7__,"8 5$R/-ZP!!
> > >
> > > It would appear that MySQL is treating the backslash after #MU as an
> > escape
> > > and is stripping it out. Does anyone know how to get around this problem?
> > >
> > > Cheers. Paul
> >
> > Escape slashes with a slash
> >
> > jason
> ------------------------------------------------------------------------------
> Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/
> To Unsubscribe visit
>http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a
>message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
