protecting MySQL password on multi-user system

To: debian-user@lists.debian.org
Subject: protecting MySQL password on multi-user system
From: Eric P <eric.maillist@gmail.com>
Date: Wed, 26 Apr 2006 19:59:39 -0500
Message-id: <[🔎] 4450177B.2040007@gmail.com>

I'm on a multi-user Linux system running PHP and MySQL.  I have user permissions only.  No root perms.

Whenever I do an SQL query, I include (via PHP) a file (of which I'm the owner) which exists just under the web root
which contains my MySQL username and password.

I have to keep this file's permission at 644, or else I get 'permission denied' when my PHP script tries to include it.
 Apache runs as 'noname' on this server, but I'm not able to chgrp or chown this file to 'noname'.  (Operation not
permitted)  Again, I'm only one of many (thousands of?) users on this system, so I have to implement something with
regular user perms only.

I definately don't want this file readable by 'other' (644).  Any ideas?

Thanks for reading!
Eric

Reply to:

Follow-Ups:
- Re: protecting MySQL password on multi-user system
  - From: "Roberto C. Sanchez" <roberto@familiasanchez.net>

Prev by Date: Re: Gnome/KDE resources
Next by Date: Re: mozilla mplayer plugin does not play video
Previous by thread: Re: mozilla mplayer plugin does not play video
Next by thread: Re: protecting MySQL password on multi-user system
Index(es):
- Date
- Thread