Ok, I understand we cant save plain password text on the AutoIt (compiled or not) for a safety reason.
I (just) understand how to use password hashing if the user need to enter password.
Something like this:
But what if we want to connect to the mysql server to read databases without user need to input the password?
Something like this:
If somebody decompile to code, he could easily get the password with unhash($mysql_password_in_hash), so where is the point hashing the password in this scenario?
Please enlight me![:)]()
Hope that I'm not starting a hamster wheel again in this thread and got my thread stopped![:D]()
I (just) understand how to use password hashing if the user need to enter password.
Something like this:
$server_password_hash = "380183901830210"
$user_entered_password = InputBox("Security Check", "Enter your password.", "", "*")
If hash($user_entered_password) <> $server_password_hash then
Msgbox(0, "Info", "Wrong Password!")
Exit
else
continue
endif
But what if we want to connect to the mysql server to read databases without user need to input the password?
Something like this:
$mysql_username ="myusername" $mysql_password_in_hash = "981891839193231" $mysql_database_name = "mydatabase" $mysql_server_name = "mywebsite.com" $SQLInstance = _MySQLConnect($mysql_username, unhash($mysql_password_in_hash), $mysql_database_name, $mysql_server_name)
If somebody decompile to code, he could easily get the password with unhash($mysql_password_in_hash), so where is the point hashing the password in this scenario?
Please enlight me
Hope that I'm not starting a hamster wheel again in this thread and got my thread stopped
