stackoom
  简体   繁体   中英

How to save SSH credentials secure in database?

 原文  2019-02-25 19:21:24       php/ mysql/ ssh/ passwords

Question

I have a PHP script which connects via SFTP to servers to get data from there. That's a necessary thing for my project.

But how to store the credentials to this servers in my MYSQL-database? I don't want to store a SSH-password as plaintext, but I nearly have to, because otherwise the script can't connect? Is this true or is there another, secure way?

Snippet of my script: 

while($row = mysqli_fetch_assoc($servers)) {
  $srvip = $row["ip"];
  $srvuser = $row["user"];
  $srvpassword = $row["password"];
  $file = file_get_contents('ssh2.sftp://' . $srvuser . ':' . $srvpassword . '@' . $srvip . ':22/files/data.txt');
}

1 answers

solution1
 0  2019-02-25 22:48:46

Why not use MySQLs encryption options then you can decrypt the password when you run your initial MySQL query?

https://dev.mysql.com/doc/refman/8.0/en/encryption-functions.html Don't know if its applicable to your application but thats the way i'd go with it?

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Secure storage of database credentials Secure storage of database connection credentials How to secure database credentials stored in Laravel environment files? Keeping database credentials secure in a PHP application How can I secure my database credentials when using shared hosting and no access to outside the webroot? PHP write and save database credentials - Best practise is it secure to save password in cookie or its better to save it in database PHP how to secure password in database How to secure database passwords in PHP? How to pass paypal API credentials SECURELY in with php (and why is this not considered secure)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM