On Fri, Apr 3, 2009 at 11:08 AM, Mehul Ved mehul.n.ved@gmail.com wrote:
On Fri, Apr 3, 2009 at 10:53 AM, Chirag R crazylinuxer@gmail.com wrote:
What do you do when you have two different admins? One for MySQL
(database
guy) and the System admin (root guy)?
Are you worried about your password? Or about the root accessing the database? The latter can happen even without him knowing your password. And former you can use a different password besides your top_secret_password.
Or is there some other reason why you'd want to hide the password from root user?
Thanks for you reply Mehul. Following reasons :
1. My App looks bad since it requires to store password in clear-text in a file. This is more of client requirement; they do not want any password to be stored in clear-text. Take example of Oracle DB, it provides you facility of Oracle Wallet, using which you can store password and access it via a tnsname. 2. Accidentally doing a cat even by root will make the password visible. 3. If you send across the system info to support to troubleshoot my App, this file maybe included. Customer passwords will be exposed to support guys. (I know customer can remove the password line and send across the file, but again its about convenience)
I know root can access almost any file and cause damage/modify, but that is something I am not worried about. The idea is to not keep it ridiculously easy for someone to crack.