This is a typical, safe setup: 1. Client web browser clicks a button on a web page. 2. Web server sends a command to a CGI script (running on the server). 3. CGI script makes a connection to the database and runs a SQL function. 4. The SQL function executes a transaction on the database.
#1 is executed at some random, remote, external machine. #2 is the only socket action that actually takes place. #3 is run through the localhost loopback device to gain DB access. #4 is entirely done within the database server code. Something you can usually do as a quick test is to set your database up so that it only accepts connections from the localhost. Then run through all your tests. If any of them fail, that's a point where you are trying to access the database remotely and need to fix it. HTH, Jeff M. _______________________________________________ use-revolution mailing list use-revolution@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-revolution