There has been a similar discussion on this node: Best practices for database passwords
Hope that helps.

GoCool