Wow, how long has it been since this discussion showed up here? A review of the archives says about 3 years.
Basically, you have 4 choices: 1) in a table in the database 2) hardcoded in the program source code 3) in a file that the program reads 4) in a configuration file that another program reads (like httpd.conf, I got this one from the archives) If none of these are acceptable, you have re-discovered a fundamental problem with using passwords to secure data to be accessed only by automated programs. You could probably design an elaborate solution particular to your requirements, but only you know your requirements. Its common to refute (1) because someone else (not privy to your password) is the DBA and to refute (2-4) because you don't trust whoever has root access. Don't forget to secure your backups, too. HTH, Dave On Feb 26, Nilanjan Das scribed: > Hi All, > > Thanks a lot for the responses. I used Crypt::CBC using Blowfish. It works > as expected. > > I have one more query. Is there any way to store the key that we use to > encrypt so that only the program that will decrypt it will get access to it? > I can not store it in any database as I want to encrypt the database user > name and password. > > Thanks, > Nilanjan > ----- Original Message ----- > From: "William R. Mussatto" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, February 25, 2003 11:21 AM > Subject: Re: Encryption module > > > > > Hi, > > > > > > Can anyone tell me some of the Perl packages used for Encrypting or > > > Decrypting some data mostly strings using some Public and Private key > > > like RSA. Please suggest some.I want to encrypt/decrypt the database > > > user and password. > > > > > > Thanks, > > > Nilanjan > > Look under Crypt::Blowfish for symmetric key (single key systems). You > > use the public private key systems if different parties will be encoding > > and decoding. That said for Passwords you can use a one way key which MD5 > > provides. You just encode the test password and then compare it with the > > encrypted password which is stored in the database. I guess you could use > > one half of a public private key system to do this. > > > > William R. Mussatto, Senior Systems Engineer > > Ph. 909-920-9154 ext. 27 > > FAX. 909-608-7061 > > > > > > >
