NEWBIE: I have a security question:

When working with PHP and MySQL, it seems that a one method is to create a 
connection.php page to the database that will store the connection parameters 
such as username, password and URL ip in clear text and include this on various 

Since hackers seem to be getting better and better every day:

-  Is this common practice to store this security data in the clear on the PHP 

- Wouldn't it be possible for a hacker to SNIFF around and pick up this 
sensitive "clear text" security data?

- Is there some better, more secure way to communicate from the website to the 
MySQL data source that is somehow sending encrypted information rather than 
clear text back and forth?

Thanks in advance for your help.

Dave - DealTek

PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to