Are your database fields encrypted using something of this genre?
http://publib.boulder.ibm.com/infocenter/iseries/v5r4/topic/db2/rbafzmstscale.htm#scaencrypt
If so, how do you pass something from DCM into DECRYPT or SET ENCRYPTION
PASSWORD?
Does DCM retrieve some character string that is then used as the variable
for the above?
If so, how hard is it to throw the program into debug and display the
variable?
I too had a ftp password hidden in a program that I hid the source. I
screwed up by calling a coworkers routine. He quickly announced the
crack.
I thought of recommending storing the password in a data area that was
secured out and you needed either a service program that adopted authority
to get it, or *ALLOBJ. However if the use of this routine is required by
any other programmer to process the data then they quickly have access to
the encryption password. I bet the process of changing the password after
terminating him and decrypting the data with the old and encrypting it
with the new is a PITA.
ie
Password=EncryptionPassword(); // call super secret storage of encryption
password
exec sql SET ENCRYPTION PASSWORD :Password;
dsply Password;
exec sql select decrypt_char(ssn) into :DisplaySSN from employee where
key=:key;
Rob Berendt
midrange.com
