Hello William, Saturday, October 21, 2006, 1:04:44 AM, you wrote:
> Ilia Alshanetsky wrote: >> >> On 20-Oct-06, at 5:10 PM, Marcus Boerger wrote: >> >>> Hello Ilia, >>> >>> also an ISO/shared server will never be securewhatever you do and >>> you can >>> make MySQL disaalow external connections. That basically means in those >>> scenarios you do not need any authentication at all and thus get better >>> speed as in more responses. Now is that bad? >> >> It is not, the only idea is that while your servers maybe secure, >> however you may not entirely trust your datacenter, so encryption of the >> data would protect you against man-in-the-middle attacks. > This isn't philosophical, privacy regulations in many industries now mandate > all tiered solutions use encryption between every network attached box, no > matter if it's hiding behind the DMZ or not. I was not saying no security is the best thing ever. I simply said that insomesituations it is perfectly fine. That said the lack of encrypted communication is no reason to drop mysql. We are discussing PHP here - not how database applications shall be designed. Best regards, Marcus -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
