Hello there!
At first I want to say that HeidySQL is great, really great.
I have one question - where are stored saved passwords ? I want to know it because of security reason ..
Ads were blocked - no problem. But keep in mind that developing HeidiSQL,
user support and hosting takes time and money. You may want to
send a donation instead.
Security
ansgar posted
12 years ago
Registry:
HKEY_CURRENT_USER\Software\HeidiSQL\Servers\[Your session name]\Password
The password value is encrypted using a homebrown obscure method, which is not very strong but should be good enough to have it not hacked in 5 seconds.
HKEY_CURRENT_USER\Software\HeidiSQL\Servers\[Your session name]\Password
The password value is encrypted using a homebrown obscure method, which is not very strong but should be good enough to have it not hacked in 5 seconds.
Kuboslav posted
12 years ago
Thank you for answer. I'm affraid that it's not very secure way.. Have you ever think about storing password encrypted by for example "AES Crypt" and protect them with master password ?
ansgar posted
12 years ago
Not yet. As I don't have a clue how to accomplish that using Delphi.
gvlastos posted
2 weeks ago
Hello Ansgar,
Is Heidisql still storing passwords using homebrown obscure method? If something changed, how stored pawwords are encrypted?What method or algorith is used?
ansgar posted
2 weeks ago
The old encryption is still being used in v12.0.
I recommend to use the "Prompt for credentials" option for sensitive servers.
gvlastos posted
2 weeks ago
Any timeline to improve it, please?
gvlastos posted
2 weeks ago
Is there any way to enforce "prompt credentials"? How can we delete the existing credentials without tampering the registry?
ansgar posted
2 weeks ago
You can clear the credentials first, in the session manager. Then activate the prompt checkbox.
Please login to leave a reply, or register at first.
Database powered by MariaDB
HeidiSQL is proudly built with Embarcadero Delphi
HeidiSQL on Facebook