Skip to main content
Solved

How do database connection passwords get saved in workbenches?

  • January 24, 2017
  • 3 replies
  • 169 views
S

Can these passwords be extracted from the workbench files? I am concerned from a security standpoint.

Best answer by david_r

You should never save any important passwords in your workspace files if you're afraid they might get into the wrong hands.

For someone who is moderately proficient in FME it is quite easy to extract the database connection password into clear text if they have access to the fmw file.

As an added layer of security you could consider also password-protecting the workspace file. Although this is no guarantee, it will help a bit. More info here: https://knowledge.safe.com/articles/603/password-protection-for-fme-workspaces.html

In the more recent versions of FME there is the concept of a named database connection, which is defined independently from the fmw file, and for which the encryption is much stronger. Highly recommended: https://docs.safe.com/fme/html/FME_Desktop_Documentation/FME_Workbench/!NamedConnections/Using_Database_Connections.htm

View original
Did this help you find an answer to your question?

3 replies

david_r
Celebrity
  • david_rCelebrity
  • Best Answer
  • January 24, 2017

You should never save any important passwords in your workspace files if you're afraid they might get into the wrong hands.

For someone who is moderately proficient in FME it is quite easy to extract the database connection password into clear text if they have access to the fmw file.

As an added layer of security you could consider also password-protecting the workspace file. Although this is no guarantee, it will help a bit. More info here: https://knowledge.safe.com/articles/603/password-protection-for-fme-workspaces.html

In the more recent versions of FME there is the concept of a named database connection, which is defined independently from the fmw file, and for which the encryption is much stronger. Highly recommended: https://docs.safe.com/fme/html/FME_Desktop_Documentation/FME_Workbench/!NamedConnections/Using_Database_Connections.htm

erik_jan
Contributor
Forum|alt.badge.img+17
  • erik_janContributor
  • Contributor
  • January 24, 2017

Since FME 2016 database connections can be saved as named connections.

Only the name of the connection (user defined alias) is stored in the FMW file.

You can reference the connection in multiple workspaces by name only.

The database credentials are stored in a binary external file (SQLite database).

itay
Supporter
Forum|alt.badge.img+17
  • itaySupporter
  • Supporter
  • January 24, 2017

And that file is usually saved under your user settings or you can specify the location via the FME options

Reply


Helpful Members This Week

Community Stats

31,139
Posts
118,062
Replies
38,758
Members

Latest FME

Terms & ConditionsCookie settings

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings
A product of
Safe Software respectfully acknowledges that we live, learn and work on the traditional and unceded territories of the Kwantlen, Katzie, and Semiahmoo First Nations.