Security issues for managing connection information directories

Asked 2 years ago, Updated 2 years ago, 104 views 

'connection': {
        'host': 'localhost',
        'port': '3306',
        'user': 'root',
        'password': 'admin',
        'database': 'test'
    }

Developing a node.js environment web app.

I am using mysql in conjunction with it, but how should I handle the above connection information?

Is there any security problem if I just manage it under the name config.js, etc. in the web directory?

Please answer the above issues and methods!!!

Have a nice weekend!

node.js security hacking

2022-09-22 21:37

1 Answers

If you are exposed to a single source, such as development equipment, servers, and source storage, information that can access the DB will be exposed immediately.

Rather than simply saving passwords to a file, we recommend storing them in system variables on the server and reading them.

This prevents exposure to sources.

2022-09-22 21:37

If you have any answers or tips

Popular Tags
python x 4647
android x 1593
java x 1494
javascript x 1427
c x 927
c++ x 878
ruby-on-rails x 696
php x 692
python3 x 685
html x 656
Popular Questions

582 PHP ssh2_scp_send fails to send files as intended

573 rails db:create error: Could not find mysql2-0.5.4 in any of the sources

574 Who developed the "avformat-59.dll" that comes with FFmpeg?

613 GDB gets version error when attempting to debug with the Presense SDK (IDE)

1022 In Java servlet, when SHA-256 sends WW-Authenticate header for digest authentication, the client does not return the result.

© 2024 OneMinuteCode. All rights reserved.