How to organize storage of data in open form for access to third-party sites?

D

daMage2014-03-11 19:52:51

Information Security

daMage, 2014-03-11 19:52:51

You need to log in to a third party site. The data is stored in clear text (login, password) in a file on the server. I can’t enter data before authorization, because only the administrator knows the password, but several other people use the service.
It turns out everything is fine, but when the system is hacked, data will be leaked, but what if there is more than one service? I do not want to change the data on each later. It occurred to me to store the authorization data on another server (on my computer, for example), to enter the access password on my website. Minus, in fact, in storage on your computer, there should be a constant uptime, which is not. It makes no sense to store it on another hosting, because it's the same. Maybe someone faced a similar situation?

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

S

Sergey, 2014-03-11
@begemot_sun

For each person, store authorization information encrypted with that person's password.
Passwords are not stored anywhere. If the person entered the password incorrectly, then he did not receive authorization data.