After analyzing code two developers at a company bring samples to the security operations manager:

Example language: Java

# Java Web App ResourceBundle properties file

webapp:ldap.username=secretUsername

webapp:ldap.paswword=secretPassowrd

The following example shows a portion of a configuration file before an asp.net application

example language: asp.net

Connectionstring

Add name=ud_Dev connectionstring=connectuDB; uid-db2admin; pwd=password; dbalias=uDB; provideerName=System.Data.Odbc /

/connectionstrings

Which of the following would best solve these coding problems?

1. Use a privileged access management system

2. prompt the administrator for the password

3. use salted hashes with pbkdf2

4. increase the complexity and length of the password