RE: [PHP] Encrypted MySQL passwords

2002-09-27 Thread Rodolfo Gonzalez
On Fri, 27 Sep 2002, Rodolfo Segleau wrote: > > Nope, I mean: support for SSL+MySQL4 in PHP's mysql_connect. I know that > > MySQL 4.0 supports SSL, but I don't know if PHP has/will have support for > > MySQL connections using SSL in future versions. > Rodolfo (Tocayo!), Hola!, > The PHP my

RE: [PHP] Encrypted MySQL passwords

2002-09-27 Thread Rodolfo Segleau
> - Message from [EMAIL PROTECTED] - > Date: Fri, 27 Sep 2002 13:30:40 -0500 (CDT) > From: Rodolfo Gonzalez <[EMAIL PROTECTED]> > Reply-To: Rodolfo Gonzalez <[EMAIL PROTECTED]> > Subject: RE: [PHP] Encrypted MySQL passwords > To: John Holm

RE: [PHP] Encrypted MySQL passwords

2002-09-27 Thread Rodolfo Gonzalez
On Thu, 26 Sep 2002, John Holmes wrote: > > BTW (and I have not checked the CVS/TODO, so I ask here), is > > there planned support for SSL & MySQL 4.x.x in PHP?. > Yes. More info in Chapter 4.3.9.1 of the MySQL manual. Nope, I mean: support for SSL+MySQL4 in PHP's mysql_connect. I know that MySQL

Re: [PHP] Encrypted MySQL passwords

2002-09-27 Thread Richard Fox
"Rodolfo Gonzalez" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > On Thu, 26 Sep 2002, Brad Bonkoski wrote: > > > also might be better then sending it in the clear. > > But I guess that the original poster wanted to know how to avoid the clear > text session o

RE: [PHP] Encrypted MySQL passwords

2002-09-26 Thread John Holmes
> BTW (and I have not checked the CVS/TODO, so I ask here), is > there planned support for SSL & MySQL 4.x.x in PHP?. Yes. More info in Chapter 4.3.9.1 of the MySQL manual. ---John Holmes... -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Encrypted MySQL passwords

2002-09-26 Thread Rodolfo Gonzalez
On Thu, 26 Sep 2002, Brad Bonkoski wrote: > also might be better then sending it in the clear. But I guess that the original poster wanted to know how to avoid the clear text session originated by the client-server dialog itself, not the passwords in a query (its easy to log the sessions using t

Re: [PHP] Encrypted MySQL passwords

2002-09-26 Thread Brad Bonkoski
There are common one-way encryption, like md5, this is commonly what I do, I encrypt with md5 when I insert the password into my database on the DB server, and then I encrypt with PHP on the Web server side, so therefore, I am only ever sending my md5 encrypted password over the "wire". Since it

RE: [PHP] Encrypted MySQL passwords

2002-09-26 Thread Adam Voigt
Maybe you could somehow setup your SSH tunnel before-hand (at server start up or something) and use that instead. Adam Voigt [EMAIL PROTECTED] On Thu, 2002-09-26 at 12:40, John Holmes wrote: > > I am connecting to a mysql server on a remote machine, and opened up > port > > 3306 for this purpos

RE: [PHP] Encrypted MySQL passwords

2002-09-26 Thread John Holmes
> I am connecting to a mysql server on a remote machine, and opened up port > 3306 for this purpose. But, I am concerned about sending a clear text > password, via the mysql_pconnect() call. My question is, what is the > procedure for connecting to a remote server with an encrypted password? > Or