List:General Discussion« Previous MessageNext Message »
From:Paul DuBois Date:May 23 1999 12:36am
Subject:RE: MySQL Security
View as plain text  
At 8:49 PM +0200 5/22/1999, Willem Bison wrote:
>> 1. Where should I store my password/username? I know there is a section
>> in the manual, but it's not completely applicable for our situation,
>> since we share the database with others and we don't have full access.
>> 2. If I have the password in my .php3 files is this secure? Is there a
>> way to store the .php3 files outside the web root? How can I access
>> these files then?
>Users can only see the parsed php3 files so I suppose it is secure.

Unless the server gets misconfigured somehow and starts serving .php3
files as uninterpreted text...

>I keep all the connection stuff in a separate file outside the webroot and
>include it just to be safe.

Paul DuBois, paul@stripped
Northern League Chronicles:
MySQL SecurityMark Pors22 May
  • RE: MySQL SecurityWillem Bison22 May
    • RE: MySQL SecurityPaul DuBois23 May