Is there a way to use an encrypted value for $DatabasePassword in RT_Siteconfig?
Thanks,
Brent
Is there a way to use an encrypted value for $DatabasePassword in RT_Siteconfig?
Thanks,
Brent
Hi Brent,
DBD::Pg uses the libpq library, which supports GSSAPI. You could use that
for your authentication instead – at least if you are using PostgreSQL
as your database.
Regards,
Ken
Is there a way to use an encrypted value for $DatabasePassword in
RT_Siteconfig?Thanks,
BrentHi Brent,
DBD::Pg uses the libpq library, which supports GSSAPI. You could use
that for your authentication instead – at least if you are using
PostgreSQL as your database.Regards,
Ken
Sorry, I guess I should have mentioned we’re using MySQL.
Is there a way to use an encrypted value for $DatabasePassword in
RT_Siteconfig?
What, exactly, do you mean by “encrypted”? RT clearly needs to have
access to the plaintext password to pass to the MySQL authentication
process, so there is nothing that can prevent some part of the RT
internals from knowing the plaintext.
The fact that the password is in plaintext is one of the reasons why
RT_Config.pm is 0440 and generally owner root and group apache; this
prevents arbitrary users from seeing it. If you’re looking to prevent
it from being gleaned from accidental reading by someone who can read
the file, you can simply rot13 it:
my $rot13 = sub {
my $s = shift; $s =~ tr/A-Za-z/N-ZA-Mn-za-m/; $s
};
Set( $DatabasePassword, $rot13->(“cnffjbeq”) );
- Alex