[rt-devel] Re: DB_DBA_PASSWORD security

Jesse Vincent jesse at bestpractical.com
Fri Oct 11 15:05:43 EDT 2002



On Fri, Oct 11, 2002 at 07:21:25PM +0100, Olly Stephens wrote:
> Slash and a few other funky web-based perl thingies use the DBIx::Password 
> to manage this.
> Basically, it creates a name -> db connection "password" file and stores it 
> in the module directory.
> This way, applications just have to use the name of the service to obtain a 
> DB handle.
> 
> http://search.cpan.org/author/KROW/DBIx-Password-1.8/Password.pm

I took a look at this a while back and it seems to just add a layer of 
complexity, without any real benefits.

	-j


-- 
»|« http://www.bestpractical.com/rt  -- Trouble Ticketing. Free.



More information about the Rt-devel mailing list