Re: Secure way of storing passwords in the database
Luis Lebron wrote on 07.11.2003 15:22 Any suggestions of a secure way of storing membership passwords (for a website) in a mysql database? Should I use sha, aes, des??? thanks, Hi Luis, try md5 encryption for passwords in your application and write md5-encrypted values to simple varchar/text fields in your db. you can find md5() in the php manual, there are also some examples in the user notes which can also be applied with other encryption methods (as I don't know whether you are using php). Cherio, Henning -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
updating records without changing timestamp fields
hi there, the subject tells almost everything, I try to update records in a table and everytime I do this, the timestamp field ist set to now(). how can I keep the previously stored value for this field (there are values created before)? thanks for your help, henning -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: updating records without changing timestamp fields
[EMAIL PROTECTED] wrote on 27.10.2003 21:31 use timestamp_col = timestamp_col in your query, to override the NOW() affect. I just passed by this comment this morning http://www.mysql.com/doc/en/DATETIME.html -- user comments at bottom of page hth Jeff all, thanks for your help! sorry i missed the thread this morning, it's hard to have an eye on all the lists :-( good to know what timestamp was originally meant to do, very useful functionality of course (if one knows how it works!). thanks again, henning -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: date_format function - German
Hello Steve, Steve Vernon wrote on 22.10.2003 16:47 I suppose I could return the month as a number, and then output the text from that, but this seems a bit tacky! I think that's the most reliable way, imagine you move to a new server or install your software somewhere else . . . I got used to passing unix_time or timestamps to my applications and modify them there, not nice but it works. In php you can use setlocale for time and date functions to get correct values, there might be sth similar in java etc. rgds, Henning -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Help MySQL Beginner please.
[EMAIL PROTECTED] wrote on 02.04.2003 17:10 Hi all, Hello Jef, The best thing that happened to me today is finding this list on the web. I am in deep problem. I am trying to build database for my site and just discovered that my hosting server uses mySQL and i am not use to it. I don't know where to start. don't know how to create table or anything. is there anyone who can help me with basic information that can get me started? Please not too technical please. Something a new commer can understand. Thanks, Jef well, depends on how much in a hurry you are, learning with the links mentioned before will be fine (will be unavoidable sooner or later) BUT if you want to get started fast you could maybe think about something like installing 'phpmyadmin' (http://phpmyadmin.sourceforge.net/) which allows you to concentrate on developing your webapp instead of creating SQL statements to set up your DB the whole day long. Assuming you can execute php files, you just have to download and change one file/entry (~ absolute_uri) and phpmyadmin will run and let you set up your DB. Then goto devshed and see some tutorials on selecting, updating and inserting data with php and you are almost trough the heaviest part. Good luck! Henning -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: [OT] destructive / negative / pathology testing *help, help!*
Egor, all, in addition to my first posting and to clear things up a bit: I am a little step further at the moment, in general you can say negative testing is going beyond the borders of normal (load, stress, fail-over, UAT, etc.) testing. Some aspects of negative testing in my (just reached and incomplete) sense would now be: - intercepting faking post/get/http headers - inserting SQL-statements into the application forms to corrupt databases / tables / etc - creating queries exceeding max execution time or max number of results can be handled - manually creating / inserting datasets which make the application collapse when being read again (by one of the above ways?) - reverse engineering of java clients, writing your own client and using the original client's server connection to do bad things similar to the above mentioned (this case would maybe definetly go beyond the point we would call 'hacking') - and also manipulating any kind of software (the JVM?) to reach one or more of the following effects this all leads / should lead the application to stop / shut down / break in not a planned way, e.g. without being able to write logs or showing readable error messages to the user, stopping the server or doing other unattractive things like killing all sessions or throwing all users out. I mainly concentrate on webapps, but also have to take a look at java-clients. I do not cover destroying hardware (disks ...) or things like that. Does anyone have more 'phantasies' on that? Thanks for your posting(s) your attention again, Henning Egor Egorov wrote on 28.03.2003 09:53 On Thursday 27 March 2003 14:35, Henning Heil wrote: Is the crash-me software what are you looking for? Check these links: http://www.mysql.com/information/crash-me.php http://www.mysql.com/doc/en/Custom_Benchmarks.html From the latest link, a cite: To avoid problems like this, you should put some effort into benchmarking your whole application under the worst possible load! You can use Super Smack for this, and it is available at: http://www.mysql.com/Downloads/super-smack/super-smack-1.0.tar.gz. As the name suggests, it can bring your system down to its knees if you ask it, so make sure to use it only on your development systems. Try it. Hi all together! Meanwhile I found out that what I am looking for is best known as negative testing, trying to break an application puckish, to make it fail more or less serious by going bejond the borders. I am really really in a hurry (and stuck at the moment) getting information on this topic (I wouldn't ask here if not). Does anyone have web-links, pdf or other files and can provide those to me? Topics of interest might be a test strategy for negative testing or _even_more_ concrete samples of test cases! Most documents if found say that one can convert existing test cases to negative test cases BUT how? Focused on databases negative testing could mean sth like submitting SQL-statements which cause destructive behaviour inserted into search forms or similar. Something similar would be to intercept post-string or modify http-headers. Any more ideas? Any help will be welcome - thanks a lot! Rgds, Henning Heil P.S.: This must not necessarily go over the list, PM will be fine. P.P.S.: If anyone is interested in I can provide the material I found so far filters? sql, query, mysql -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
[OT] destructive / negative / pathology testing *help, help!*
Hi all together! Meanwhile I found out that what I am looking for is best known as negative testing, trying to break an application puckish, to make it fail more or less serious by going bejond the borders. I am really really in a hurry (and stuck at the moment) getting information on this topic (I wouldn't ask here if not). Does anyone have web-links, pdf or other files and can provide those to me? Topics of interest might be a test strategy for negative testing or _even_more_ concrete samples of test cases! Most documents if found say that one can convert existing test cases to negative test cases BUT how? Focused on databases negative testing could mean sth like submitting SQL-statements which cause destructive behaviour inserted into search forms or similar. Something similar would be to intercept post-string or modify http-headers. Any more ideas? Any help will be welcome - thanks a lot! Rgds, Henning Heil P.S.: This must not necessarily go over the list, PM will be fine. P.P.S.: If anyone is interested in I can provide the material I found so far filters? sql, query, mysql -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
[OT] destructive / negative / pathology testing *help, help!*
Hi all together! Meanwhile I found out that what I am looking for is best known as negative testing, trying to break an application puckish, to make it fail more or less serious by going bejond the borders. I am really really in a hurry (and stuck at the moment) getting information on this topic (I wouldn't ask here if not). Does anyone have web-links, pdf or other files and can provide those to me? Topics of interest might be a test strategy for negative testing or _even_more_ concrete samples of test cases! Most documents if found say that one can convert existing test cases to negative test cases BUT how? Focused on databases negative testing could mean sth like submitting SQL-statements which search forms or similar. Any more ideas? Any help will be welcome - thanks a lot! Rgds, Henning Heil P.S.: This must not necessarily go over the list, PM will be fine. P.P.S.: If anyone is interested in I can provide the material I found so far -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Re: Text formatting of articles pulled from database??
Landy Atkinson wrote on 19.03.2003 18:14 ... echo TD colspan=\3\ width=\532\P$article/P/TD; The text displays, but the paragraph breaks are gone and all the text is just run together into one long paragraph. Any suggestions on how to get $article to display and keep the white space between paragraphs that it has when displayed in a FORMTEXTAREA like echo td colspan=6textarea name='article' rows='15' cols='120'$article/textarea/td; For an example, see http://www.cobblekids.org/Pages/Articles/Article_View4b.php and click on an article title. Thanks, -Landy Landy, I think this is far more a php/html than a MySQL problem, I don't remember the code exactly but try playing around with the php-function htmlspecialchars (or similar) before inserting into DB / echo-ing out the article and you'll hopefully find a solution soon. Rgds, Henning - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: New Database,
Richard, what exactly do you mean? guidelines to good database engineering? which data how an where to store? intelligent table structures? or technical instructions related to mysql? - documentation, see message attachment cherio, henning Richard Nagle wrote, On 2/14/2003 4:57 PM: Okay, I have installed, mySQL, ( all is well ) and now looking to build my first database, is there a comprehensive user manual on how to, say in .pdf format out there ? if not, a on-line link maybe ? Thanks- Richard - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: New Database,
mmh, in the beginning i had never used any database except access (is one? :-)), i learned rapidly by reading the docs - hope that will be good for you too - because external howtos often come to an end sooner than you want, the docs on the other hand will answer all your questions. if not you can return to the list. good luck, henning p.s.: please keep the discussion on the list Richard Nagle wrote, On 2/14/2003 5:24 PM: in the simplest form, how to create a new database. how to assign users to that database. how to create tables...etc etc was looking for a more a layman approach of documentation. of even a website. Here is my issue. mysql create database Cognigen; ERROR 1044: Access denied for user: '@localhost' to database 'Cognigen' Rick On Friday, February 14, 2003, at 11:05 AM, Henning Heil wrote: Richard, what exactly do you mean? guidelines to good database engineering? which data how an where to store? intelligent table structures? or technical instructions related to mysql? - documentation, see message attachment cherio, henning Richard Nagle wrote, On 2/14/2003 4:57 PM: Okay, I have installed, mySQL, ( all is well ) and now looking to build my first database, is there a comprehensive user manual on how to, say in .pdf format out there ? if not, a on-line link maybe ? Thanks- Richard - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
Re: No suitable driver ..... urgent..
hello . . . did you install the necessary mysql driver you call in your jsp ClassForName-statement? you can find mm.mysql at sorceforge.net regards, henning nitsy wrote: Hello, I'm using MySQL 4.0.1 with Tomacat 3.3 JSP. I'm getting this error every time i access my jsp page: javax.servlet.ServletException: No suitable driver Can anybody help me out.. i tried to download from download/J but it's not gettin opened ... its urgent .. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
rescue data from disk backup
hello there! I have a backup (cd) of my former mysql installtion from an old machine and now want to get the data out of it. in the meantime the disk crashed and I have no chance to start the old installation again. does anyone know how to get the data in my current mysql-installation? just copy in the files? create the same databases and replace the files? has anybody don this before? thanks for your help, henning - Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail [EMAIL PROTECTED] To unsubscribe, e-mail [EMAIL PROTECTED] Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php