http://qs321.pair.com?node_id=251228


in reply to Re: Secure ways to use DBI?
in thread Secure ways to use DBI?

(wow - I really like that kerberos key thing!)
Another thing to consider is setting reasonable permissions on the user the CGI uses for database connections. If you only need to perform selects, don't give that user the ability to create and drop databases, among other things. This won't necessarily protect you from compromising your password, but it will help mitigate the damamge that can be done if someone gets in.