Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
Dmitry2019-02-18 11:43:40
MySQL
Dmitry, 2019-02-18 11:43:40

How to use encryption in Laravel?

I'm learning Laravel
https://laravel.com/docs/5.7/encryption
In principle, everything is easy and clear, how to encrypt data and then store it encrypted in the database.
That is, an attacker, having gained access to the site, automatically receives the encryption key contained in .env.
Then I don't understand the point of using encryption if the key is stupidly stored in the .env file?
I am looking for a way to securely store data in mysql using Laravel. I'm considering a variant with separate storage of the site on one server, and the database - on the server. But in this scheme there is a problem described above, when an attacker gains access to the server with the site (and from there he can pull data from the server from the database)

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Alexander Aksentiev, 2019-02-18
@Sanasol

It only makes sense if the database was leaked through some hole that does not allow access to the site as a whole.
If you climbed into the site with your head, then nothing will help. There is no such magical way for the site to work with the database, but if something does not get into the database.

Report
A
Alex Wells, 2019-02-19
@Alex_Wells

Because you need to read the correct section: https://laravel.com/docs/5.7/hashing
This is what you need to use for passwords, for example. One-way hashing, which does not allow anyone to restore the original data in any way.

Similar questions
R
rinaz222019-10-18 18:19:06
How to follow the link in the mobile version of the site only after the second click? 5Reply
G
GRO242019-10-20 17:02:09
Writing a loop to a variable? 2Reply
J
jorshjorsh952017-05-21 11:49:55
PHP or Python for image manipulation? 2Reply
N
NyxDeveloper2021-05-04 16:15:55
How to forbid assigning id to fields of ForignKey of that object, whose certain field is equal to False? 4Reply
D
Dima Pautov2015-06-29 19:52:05
How to smoothly scroll the page to the desired id by going to it from another page? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question