Is the password to a mysql db supposed to be stored in the script?

$dbh = DBI->connect("DBI:mysql:database:localhost","USER","PASSWORD");

Isn't there some way to retrieve it from the my.cnf file or some other more secure method?

you could place a file containing something the info in a dir that cannot be read by the public (outside of public_html or whatever) and include that in your script.

Sounds good..

And just use a direct path to the file?

Right. In PHP, it'd be somethign like:

<?php
include("/sqlvars.inc");
?>

I new it was something like that. There probably is some big admin.cnf just out of reach Reuben uses for our accounts.

Thanks for the help!

I'm trying to get used to being the user.

Yes, he's scheming against our databases. :)

you're very welcome.

I'm getting used to helping people without being a customer. It's really odd. I don't even know why I'm here. :)

LOL :D,

This is always a good place to visit even if you aren't a customer :D

And isn't that the truth!

Mmmm.