Re: [PHP-DB] Secure database connectivity?

2001-04-20 Thread B. van Ouwerkerk
file by FTP for example). If you're really paranoid, put the username/password outside your htroot into a separate file, say passwords.inc and include it into php with include('/secure/passwords.inc'), but this isn't really needed, and BTW, it won't make the connection method more secure, or

[PHP-DB] Secure database connectivity?

2001-04-19 Thread Stuart Marlow
Hi people, I'm setting up a database to collect email addresses on my web site, but I want to avoid using the insecure connection method: mysql_connect("host", "user", "pass") as this obviously displays my username and password to anyone who wants it. So I need a secure method for PHP to

Re: [PHP-DB] Secure database connectivity?

2001-04-19 Thread B. van Ouwerkerk
So I need a secure method for PHP to access a MySQL DB - I expect there's a million different ways of doing it, and I doubt any of them are simple...! You could start including a file from outside your HTML directory.. so Apache can't show it to the world.. but PHP can get it for inclusing..