Secure PHP to remote Sybase server

Anon

Hi Everyone,

This is the setup: A front-end Sun Solaris 8 server running Apache and mod php. A second server running Solaris 8 and Sybase.

Clients with a web browser connects to the front-end server and submit a query. Apache/php then opens a remote connection to Sybase on the second server using the function sybase_connect("server". "dbuser", "password") and processes the query. Everything works well. However, the problem is that the dbuser password is sent cleartext across the wire.

Is there a way to setup a secure connection between the 2 servers, or at least have the dbuser's password encrypted?

Thanks.

Dennis

Anon

Hi,

One way to get around it is to create a unique dbuser and allow only the first machine as a valid machine name for that user on that db.
Will not solve that the passwd is sent uncrypted thou...

// PA