Boston Linux & UNIX was originally founded in 1994 as part of The Boston Computer Society. We meet on the third Wednesday of each month at the Massachusetts Institute of Technology, in Building E51.

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] Passwords in Source Code?? Or, How to secure interprocess communications?



All I am doing is connecting the server with the client code, on the 
same machine. I don't care what the password is, only that the two 
agree, on any given box.

How about this: Give every boot, of every box running the code, its own 
unique password.

At every boot, create a new password in a boot script (read a UUID out 
of /proc/sys/kernel/random/uuid). Give it to Postgres and put it in a 
config file with reasonable ownership restrictions appropriate to be 
read by the client code.

Seems pretty simple.

-kb

P.S. Also turn off all but loopback access to the server process.



BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org