On Friday 03 April 2009, Chirag R wrote:
On Fri, Apr 3, 2009 at 10:46 AM, jtd jtd@mtnl.net.in wrote:
On Friday 03 April 2009, Chirag R wrote:
Hi Guys,
I am working on an application which needs to connect to MySQL database for updating/insertion etc. For the application to pickup the username/password I've created a config file somewhere on the system which looks like this:
<snip>
[mysqld] user=root password=mypassword port=3306
</snip>
Problem is that this file can be read by root on that server and my password pretty much known to anyone who has root access.
Who cares about some crappy password once they have root access.
What do you do when you have two different admins? One for MySQL (database guy) and the System admin (root guy)?
Root is king. ALWAYS.