This is not a good idea. I agree with the best practices notion that direct
access to remote SQL servers is in general a bad thing. There are tricks you
can use to harden them. I know our web guy got really really good at this.
Still, you have to know what you are doing, and apart from IP filter
I appreciate everyone's concern about about the security of my
database but I assure you that this isn't my first rodeo (small 'r' -
not a plug :-) ) and have been write secure computer systems for prison
management for over 10 years - most of them with remote access.
I should probably elabor
I think safety is over rated on some places. It all depends on the
sensitiveness of the information you are storing. If this is a simple
"Cooking Recipes Website" then using standard security polices will be
enough. If you're building your first web enabled livecode based nuclear
reactor then you m
that get changed monthly and not
available to end users that are stored in a database with NO remote access.
Seems about as safe as a cgi for manipulating the db.
--
View this message in context:
http://runtime-revolution.278305.n4.nabble.com/on-rev-remote-database-tp2998969p3002871.html
Sent f
Folks,
You can have remote connections for MySQL databases by setting the remote
mysql option. Even though PostgreSQL is more pure than MySQL, right now,
going thru mySQL might be a good option for your read only database.
:-D
On Tue, Oct 19, 2010 at 7:33 PM, Mike Bonner wrote:
> Glad it was t
Glad it was there. Never sure if there will be complete parity across server
boundaries!
On Tue, Oct 19, 2010 at 3:28 PM, stephen barncard <
stephenrevoluti...@barncard.com> wrote:
> wow. I was wrong. thanks
>
>
> s
> On 19 October 2010 13:24, Mike Bonner wrote:
>
> > Look on cPanel under databa
wow. I was wrong. thanks
s
On 19 October 2010 13:24, Mike Bonner wrote:
> Look on cPanel under databases section, theres a link for remote mysql.
> This is on Odin.
>
> On Tue, Oct 19, 2010 at 2:09 PM, stephen barncard <
> stephenrevoluti...@barncard.com> wrote:
>
> > It's not available in cpan
Look on cPanel under databases section, theres a link for remote mysql.
This is on Odin.
On Tue, Oct 19, 2010 at 2:09 PM, stephen barncard <
stephenrevoluti...@barncard.com> wrote:
> It's not available in cpanel now. I looked. I thought it was in the USERS
> and / or MySQL area a while ago.
>
> O
It's not available in cpanel now. I looked. I thought it was in the USERS
and / or MySQL area a while ago.
On 19 October 2010 12:22, Mike Bonner wrote:
> Pretty sure you can, check the tool in cpanel, I believe I read in there
> that % is allowable.
>
Stephen Barncard
San Francisco Ca. USA
more
p's. Can you
> wildcard for all domains and IP's with on-rev and mySQL?
> --
> View this message in context:
> http://runtime-revolution.278305.n4.nabble.com/on-rev-remote-database-tp2998969p3002656.html
> Sent from the Revolution - User mailing list archive at Nabble.com.
th on-rev and mySQL?
> --
> View this message in context:
> http://runtime-revolution.278305.n4.nabble.com/on-rev-remote-database-tp2998969p3002656.html
> Sent from the Revolution - User mailing list archive at Nabble.com.
> ___
> use-rev
I know they are unlimited, but I need remote access for all ip's. Can you
wildcard for all domains and IP's with on-rev and mySQL?
--
View this message in context:
http://runtime-revolution.278305.n4.nabble.com/on-rev-remote-database-tp2998969p3002656.html
Sent from the Revolut
Ien,
In practice, there will no be any performances difference at all between
IP-based or credential-based authentication (even if the credential are send in
secure mode) and you can trust me on this. On the other hand, your
authentication system will make all your n-tier app process lots more
Whiskey Tango?
What Len Morgan wrote was:
> This is all a moot point now since I have just been informed by
> Heather that the only way the on-rev server can be set up to do
> this is if you give them all of the IP addresses that people are
> going to connect from and they will allow those IP add
ot
re-writing all my apps to use a different transaction method.
--
View this message in context:
http://runtime-revolution.278305.n4.nabble.com/on-rev-remote-database-tp2998969p3002355.html
Sent from the Revolution - User mailing list archive at Nabbl
This is not a universal restriction with all web hosts. Datamost, for
instance, will allow any number of MYSQL databases and the user can tie
those DB users with any end computers' IPs from the Dreamhost control panel.
In fact, it's possible to use the % wild card and specify partial or even
all do
Len Morgan wrote:
> I guess I'm going to have to throw away everything I've done
> so far and start over with the web based approach that Pierre
> suggested. It's going to kill my performance but it's the
> only option I've got open to me at this point.
What is the performance difference?
Len Morgan wrote:
> I guess I'm going to have to throw away everything I've done
> so far and start over with the web based approach that Pierre
> suggested. It's going to kill my performance but it's the
> only option I've got open to me at this point.
What is the performance difference?
And
This is all a moot point now since I have just been informed by
Heather that the only way the on-rev server can be set up to do this is
if you give them all of the IP addresses that people are going to
connect from and they will allow those IP addresses to connect. This of
course will never w
Le 18 oct. 2010 à 20:41, Andrew Kluthe a écrit :
> The client never actually gets the login credentials for the database
> because they are stored in our private "big" client DB. On startup the rev
> program fetches the credentials from our database and connects to theirs to
> begin working with
around
an irev script for the transactions. I would love to use On-Rev as a
database host because of how close it is to where I am located and the power
of revServer.
--
View this message in context:
http://runtime-revolution.278305.n4.nabble.com/on-rev-remote-database-tp2998969p3000801.htm
Bob,
True. Sorry for forgotting to precise this along the best practice i prefer to
follow (client -> irev -> localhost connection to pg) even if in this case,
each client app need to be authenticated (login/pass send as MD5(fp)) to be
seen and accepted as safe and authorised to exchange messag
This is simply untrue. I do it now. You have to enter an IP that you are
allowed to connect from in your IP Filtering list. I forget exactly how at the
moment because I don't have the cPanel open, but this is DEFINITELY DOABLE!
Bob
On Oct 17, 2010, at 5:27 PM, Pierre Sahores wrote:
> Ien,
>
Ien,
See what i wrote to days ago to Bill... See the requests example jointed below.
Is't the use rev list a cool library ? ;-)
Hello Bill,
> I'm not even sure if I'm asking the question correctly.
>
> I've made a simple time tracking database for my colleagues. Dates, fill-ins,
> drop downs
Pierre,
It's only a security risk if I let the users WRITE to the database which
I have no intention of doing. The reason I'm trying to avoid and irev
script in the middle is that I don't want to have to connect and
disconnect every time a user asks for data. If you have a sample irev
scri
Ien,
If you just need to have a LiveCode client able to speak with the on-rev
PostgreSQL backend from anyware all over the world, why don't you choose to
send HTTP Posts from your client to an irev script witch will interact in
localhost mode with the PostgreSQL backend in full read/write befor
Pierre,
I'm trying to write a program that will access data on a public database
(Postgresql) and I don't really want to give pgAdmin to all of my
users. That would be disaster! The localhost only access has never
been the case. I've been using Postgres for more than 15 years now and
I al
Ien,
You can't do this because the on-rev PostgreSQL servers security rules
(following in this the best practices recommanded by the PostgreSQL team) are
set to allow localhost connections only. Why don't you simply use the on-Rev
phpPgAdmin panel from your home box ? Works perfect and let us
Pierre,
I'm not having any trouble with the phpPgAdmin because that's running on
the same server as Postgres is. What I'm trying to do is use (for the
time being) PgAdmin from my computer at home to talk to the server at
on-rev. So far, all I get is a message that there is no server
listen
Ien,
There went some troubles, full solved months ago, about login to the phpPgAdmin
panel of the cPanel, on the loki server at least. All worked from that time
100% well. Both MySQL and PostgreSQL are yet full usable in the on-rev
environment and some of my apps use both on a 24/7 basis (MySQL
I seem to remember someone having trouble connecting to a database on
their on-rev account remotely a while back. Was this ever resolved?
I'd like to have a database that can be accessed from anywhere but I'd
rather not go through the hoops of making a web service to get at the data.
Was th
31 matches
Mail list logo
