Re: [PHP] Password in script

2002-07-18 Thread Michael Hall
t; Yes, but if you're on a shared server, other users of the user will likely > > be able to read your PHP files & get the password. > > > > > -Original Message- > > > From: Tyler Longren [mailto:[EMAIL PROTECTED]] > > > Sent: Thursday, Ju

Re: [PHP] Password in script

2002-07-18 Thread Michael Hall
Actually, there is Banother way and you should consider it. Sensitive information like passwords should be kept in a file stored outside the live web content directory (ie, outside DocumentRoot on Apache). This file can then be included in your main file. This way, you can be sure that a miscon

Re: [PHP] Password in script

2002-07-18 Thread Richard Baskett
ion.. Thank you John Ash! :) Gotta give credit where it's due :) I hope it helps! Cheers! Rick He who is devoid of the power to forgive is devoid of the power to love. - Dr. Martin Luther King, Jr. > From: "Sailom" <[EMAIL PROTECTED]> > Date: Fri, 19 Jul 2002 11:33:59

Re: [PHP] Password in script

2002-07-18 Thread Sailom
PROTECTED]] > > Sent: Thursday, July 18, 2002 23:10 PM > > To: Sailom > > Cc: [EMAIL PROTECTED] > > Subject: Re: [PHP] Password in script > > > > > > It's fine. There's no other way to do it really. Somebody would have > > to be able to see

RE: [PHP] Password in script

2002-07-18 Thread Jonathan Rosenberg
PROTECTED] > Subject: Re: [PHP] Password in script > > > It's fine. There's no other way to do it really. Somebody would have > to be able to see the source to the php file before they could see the > password for mysql. They won't get it just by viewing the we

Re: [PHP] Password in script

2002-07-18 Thread Tyler Longren
Yes, good point Anas. Make sure that you have mysql set up right. Make sure the root mysql user has a password set and that people can't connect from "%". tyler On Thu, 18 Jul 2002 20:19:05 -0700 (PDT) Anas Mughal <[EMAIL PROTECTED]> wrote: > > Also, allow MySQL connections only from your s

Re: [PHP] Password in script

2002-07-18 Thread Sailom
THANKS :) -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Password in script

2002-07-18 Thread Anas Mughal
Also, allow MySQL connections only from your server. Tyler Longren <[EMAIL PROTECTED]> wrote: It's fine. There's no other way to do it really. Somebody would have to be able to see the source to the php file before they could see the password for mysql. They won't get it just by viewing the

Re: [PHP] Password in script

2002-07-18 Thread Tyler Longren
It's fine. There's no other way to do it really. Somebody would have to be able to see the source to the php file before they could see the password for mysql. They won't get it just by viewing the webpage that's already been parsed by php. -- Tyler Longren Captain Jack Communications [EMAIL