On Tuesday 21 December 2004 20:06, symbulos partners wrote: > What we would like to achieve? > > If a malicious user finds a way of entering of accessing the docroot (rwx) > of a website with CMS (PHP + MySQL), we would like to have further barrier > to him accessing the Mysql database.
Like I said, you're storing the means to decrypt on the same system, so once someone gets in no amount of encryption will help. So basically encryption (for this purpose) is a waste of time and adds no value. Your best defence is to prevent them from getting in in the first place. -- Jason Wong -> Gremlins Associates -> www.gremlins.biz Open Source Software Systems Integrators * Web Design & Hosting * Internet & Intranet Applications Development * ------------------------------------------ Search the list archives before you post http://marc.theaimsgroup.com/?l=php-general ------------------------------------------ /* It's raisins that make Post Raisin Bran so raisiny ... */ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
