Security issues for managing connection information directories

Asked 1 years ago, Updated 1 years ago, 91 views 

'connection': {
        'host': 'localhost',
        'port': '3306',
        'user': 'root',
        'password': 'admin',
        'database': 'test'
    }

Developing a node.js environment web app.

I am using mysql in conjunction with it, but how should I handle the above connection information?

Is there any security problem if I just manage it under the name config.js, etc. in the web directory?

Please answer the above issues and methods!!!

Have a nice weekend!

node.js security hacking

2022-09-22 21:37

1 Answers

If you are exposed to a single source, such as development equipment, servers, and source storage, information that can access the DB will be exposed immediately.

Rather than simply saving passwords to a file, we recommend storing them in system variables on the server and reading them.

This prevents exposure to sources.

2022-09-22 21:37

If you have any answers or tips

Popular Tags
python x 4647
android x 1593
java x 1494
javascript x 1427
c x 927
c++ x 878
ruby-on-rails x 696
php x 692
python3 x 685
html x 656
Popular Questions

645 When building Fast API+Uvicorn environment with PyInstaller, console=False results in an error

517 The method of the class of the application that I am creating in Typescript does not work as I expected.

546 Who developed the "avformat-59.dll" that comes with FFmpeg?

540 PHP ssh2_scp_send fails to send files as intended

551 Scrap text information after the "View More" button when searching in the Yahoo! News search window

© 2024 OneMinuteCode. All rights reserved.