Hi Steve,
I understood that usually the data required to connect to a db is stored in a
outsorced php file. For mysql clients you can define usernamepassword etc. in
the my.cnf configuration file, but I am not sure if a PHP client would access
this file.
Best regards
Nils Valentin
as far as i know, php won't by default log in as some my.cnf user.
but you can set a default username/passwort/dbname etc. in the php.ini, should be in
the [mysql] section.
as a little additional 'security' (if one could call it that) can be achieved by
masking the username/password in the php
from mucking up your databases and from
gaining access to MySQL's own password information.
I hope that helps!
-Rob
-Original Message-
From: Lefevre, Steven [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 12, 2003 5:00 PM
To: [EMAIL PROTECTED]
Subject: Designing a secure database?
I'm
I'm working on a website/database deal, and right now I'm designing the
security model.
It's using LAMP(HP), so all the tricks are going to be through PHP.
First off, this will be behind a firewall with SSL encryption. We may also
setup some kind of VPN tunneling.I'll be ignoring other security
), but would be helpful,
is defining the acceptable Ip addresses in the column definition using
enum.
-Original Message-
From: Lefevre, Steven [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 12, 2003 5:00 PM
To: [EMAIL PROTECTED]
Subject: Designing a secure database?
I'm working