On Jul 22, 2006, at 7:50 AM, Brian L. wrote:
It is our corporate security policy to not leave plain text passwords
in text files (such as database.yml).
The policy must have exceptions for automated operations, or else every
server reboot would require a human to be present, to provide
application passwords … or at least the decryption passwords for your
encrypted config files
I would like to to roll out a Rails application, but would like to
find another way to connect to MySQL without leaving plain text
passwords in database.yml
Easy - does your security password disallow accounts that have no
passwords? Then set one up, and leave the password field in
database.yml blank – no more security “problem”.