SQL Anywhere PHP 5.4.12 Password Security

Hi All,

When using the SQL Anywhere PHP dll's, (5.4.12 in this case), can anyone tell me what sort of security there is in place for passing the username and password to the database. Is it encrypted in any way.

I don't see any options within the dll to send details encrypted but presume it is so any details would be very useful to put my client's mind at rest.

Thanks,

Alasdair

encryption php

asked 25 Feb '15, 12:53

RADicalSYS
331●9●15●30
accept rate: 9%

flat view

One Answer:

active answers oldest answers newest answers popular answers

The connection information is always encrypted using AES before it is sent to the server. If you want bulletproof security (including encryption, protection against replay and man-in-the-middle attacks, and server authentication), you can use TLS. Here is the documentation on the Encryption connection parameter and the -ec server switch, both of which need to be used to make this happen.

permanent link

answered 25 Feb '15, 13:33

Graeme Perrow
9.6k●3●79●124
accept rate: 54%

Graeme, thanks very much. That is perfect.

(26 Feb '15, 07:21) RADicalSYS

flat view

Your answer

toggle preview

community wiki:

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

*italic* or _italic_
**bold** or __bold__
link:[text](http://url.com/ "title")
image?![alt text](/path/img.jpg "title")
numbered list: 1. Foo 2. Bar
to add a line break simply add two spaces to where you would like the new line to be.
basic HTML tags are also supported

learn more about Markdown

Question tags:

php ×70
encryption ×46

question asked: 25 Feb '15, 12:53

question was seen: 1,645 times

last updated: 26 Feb '15, 07:21

SAP SQL Anywhere

SQL Anywhere PHP 5.4.12 Password Security

Follow this question

Related questions