Skip to main content

Blog Archive for tchangu during February 2006

Often we see code like this.    Connection conn = DriverManager .getConnection("jdbc:mysql://localhost/springdao?user=vk&password=password"); As it can be seen above, the password is embedded in the source as clear text. No corporate risk management folk would approve of exposing passwords, which could potentially expose access to sensitive data. Of course there are many...