php - Storing mail server pwd in database -


my laravel application needs connect 3rd party email server using mail server (smtp/imap) user & pwd settings (which different logged in user & pwd). each user have own user & pwd , when sending/receiving email, application have retrieve passwords db , communicate mail server.

in order achieve this, (unfortunately) need find way store mail server password on database, ability decrypt , send mail server plain string when authenticating.

one of reasons not being able use 3rd party email-as-a-service solutions (e.g. mailgun), apart cost, each user have different domain , settings, understanding requires custom solution.

obviously scenario exposes security vulnerability , therefore have following questions:

  1. is there method interact mail server using hashed password, or kind of token? (similar credit cards gateway can provide token based transaction , not have submit credit card info every time recurring transactions).
  2. what better alternatives storing password using built-in laravel encryption - uses openssl, aes-256-cbc , mac (while keeping ability decrypt later).
  3. to understanding, secured encryption still worth nothing once laravel private key breached (i.e attacker receives access server), or encryption key regardless of laravel's implementation. there better approach protect key being stored text file on server? (the default way laravel doing it)
  4. update make sense run separate server, passwords uses own encryption & key, , instead of receiving db directly application, retrieve 2nd server (so password encrypted twice, using 2 separate keys , attacker have gain access both servers in order decrypt). or perhphs use 3rd party dedicated services such aws kms, azure key vault or vault?


Comments

Post a Comment

Popular posts from this blog

resizing Telegram inline keyboard -

telegram's inline keyboard great feature lots of different use cases. inline buttons added list of items this: inline_keyboard = [[inlinekeyboardbutton(text="button", callback_data="button"), inlinekeyboardbutton(text="reset",callback_data="reset")]] inline_keyboard_markup = inlinekeyboardmarkup(inline_keyboard) update.message.reply_text("hi", reply_markup=inline_keyboard_markup) the above code adds 2 buttons each half width of chat screen. i know the normal keyboard button there resize_keyboard parameter somehow can used. my question is there way resize inline buttons ? example make full width or quarter width. unfortunately, can't now. :( you can suggest @botsupport , might add feature next version.
Read more

command line - How can a Python program background itself? -

consider following python command-line program. doesn't work because incomplete, think illustrates problem: #!/usr/bin/python3 import multiprocessing pool = multiprocessing.pool() task in expensive_iterator_with_user_interaction(): pool.call_async(expensive_computation, (task,)) pool.close() print("dear user, may press ctrl-z , bg script.") pool.join() thus, problem scripts needs user input while it's launching expensive parallel processes. there moment when user interaction not needed anymore. then, ask user background process shell actions. however, can achieved program itself? (side note: core of problem entanglement of user input firing “expensive computations”. therefore, cannot separate both in 2 scripts, , letting 1 spawning other daemon.) the command screen may you. use screen -l create new session , run application. after inputting data, can press " ctrl-a " , press " d " on keyboard detach session. now
Read more

php - "cURL error 28: Resolving timed out" on Wordpress on Azure App Service on Linux -

Image
my wordpress installation on azure app service on linux using custom docker container has slow response times. pages take around 20-40 seconds load. i have troubleshooting plugin installed indicates problem "curl error 28: resolving timed out after n milliseconds" when making requests following urls https://api.wordpress.org/core/version-check/1.7/ http://api.wordpress.org/core/version-check/1.7/ https://api.wordpress.org/plugins/update-check/1.1/ http://api.wordpress.org/plugins/update-check/1.1/ https://api.wordpress.org/themes/update-check/1.1/ http://api.wordpress.org/themes/update-check/1.1/ curl works fine on scm-site command line. example works ok. curl -x post http://api.wordpress.org/core/version-check/1.7/ edit if ssh container , run php code, works fine. <?php $url = 'http://api.wordpress.org/core/version-check/1.7/'; $fields = array( 'version' => urlencode('4.8.1'), 'php' => urlencode(
Read more