Menu
I have a powershell script that connects to a MySQL database - Of course this connection needs a password and I would like to encrypt the password in some way, as opposed to storing the password as plain text.
I have looked into the securestring methods, outputting the password to a file, however I don't think they will work because the encrypted password can only be decrypted by the original user, and the script is going to be distributed onto a number of machines across the network.
Any suggestions on any other methods that would be useful?
Thanks
658
One way to safely encrypt PowerShell script is by converting it into a secure string. You must first create a sample script you would like to encrypt and save it as $home\original. ps1. This approach allows you to use your personal identity as secret key.
Encryption Process The credentials are acquired from the user via prompt as a SecureString (System. Security. SecureString). Using the PowerShell function ConvertFrom-SecureString, the password portion of this secure string is encrypted with AES using a 256 bit key.
If the script is going to be distributed onto a number of machines across the network then every credentials that your script is going to use will be accessible to those users and there is no way around it.
You can do two things if there are any private per-user data:
If all of the data is public and read-only then you can either:
Number 2 of every one of those options is generally recommended for every database with a security history of MySQL, but number 1 of both of those options would be recommended for databases like CouchDB.
Never distribute any credentials with your program that you don't want your users to use.
56
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
