Hello there, Services like Google Adwords, Yahoo, Amazon and various affiliate network got their own API. In case of Google Adwords you need you send your username and password as part of a GET request every time you want to access the system. These headers are not encrypted. So I wonder, how do you guys handle security. Do you store the Google Adwords password in a database? If so, how do you encrypt them? Of course the host should be secure enough so you can store your adwords info in a config file (like you do with the db info when you run wordpress). But in this case, “hackers†can use this information to get access to your Google Adwords account and that can cost you lots of money. So storing the adwords info the same way as the db info for a wordpress installation is not a good idea. Suggestions how you can do this?