[Zope] Storing a password in a python product

Peter Bengtsson mail@peterbe.com
Sun, 02 Mar 2003 16:41:14 +0000


What are the security implications of storing a password in a python 
product as persistent data?

I was thinking of something like this:

class MyProduct:
     def __init__(self, hostname, username, password):
          self.hostname = hostname
          self.username = username
          self.password = password


But I will also need to be able to use the password in anonymous actions; 
otherwise I could ask for the password (in some suitable way) each time 
it's needed.

Basically, how do I keep good security with sensitive persistent data in a 
python product?

Peter