At 12:16 PM 4/4/2002, you wrote:
>Is it possible to access a sql statement to mysql database through
>Internet explorer ? such as :
>
> http://www.abc.com?select * from test
>
>Thanks.
>
>
>--
>
>Best regards,
>
>
>Ridwan
>Goldbase Technology
Ridwan,
Of course, with something like PHP to get the SQL parameter and
you would pass that to the MySQL Query function. And then every hacker will
beat a path to your door.<g> You would have an "open house" to every hacker
and cracker to come on over and trash your database. I assume you are
having a contest to see which hacker can gain full access to your database
in the least amount of time? Then restore the files and have some else have
a go at it? You would then post the results on your web site (provided they
don't hack that table too)? Sounds like fun. Please let us know what the
URL is so we can all have a shot at it. Are there going to be any prizes? <g>
Sorry, I couldn't resist. After spending a great deal of time
working with encryption and checksums to thwart hackers, it was
"refreshing" to see someone giving them full access to their site. If you
want only the administrator to do maintenance on the database, take a look
at PHPAdmin on http://sourceforge.net/search/.
Brent
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
---------------------------------------------------------------------
Before posting, please check:
http://www.mysql.com/manual.php (the manual)
http://lists.mysql.com/ (the list archive)
To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
