RE: [PHP] MySQL & PHP Security From: Jason Cox (jasonc <email protected>)
Date: 09/29/00

I would say it's completely useless and not really relevant.

Jason

-----Original Message-----
From: r a n d y [mailto:iduh_2000 <email protected>]
Sent: Friday, September 29, 2000 4:08 PM
Cc: [php]
Subject: [PHP] MySQL & PHP Security

My domain host suggests _NOT_ connecting to MySQL using PHP as it sends the
username and pass as "plain" text to the MySQL server, as opposed to sending
encrypted. Is this really an issue for the average Joe (or Randy in my case)
who just wants to make a dynamic web site and won't be storing any _real_
important info?

They also said something about PHP not being 700...which I assume means that
all executable and no r or w...this is how they handle cgi. Is there really
a need to go all out like this for personal websites with pretty much
useless information?

randy
______________________________________________
http://www.randys.org

For-pay Internet distributed processing.
http://www.ProcessTree.com/?sponsor=11087

_________________________________________________________
Do You Yahoo!?
Get your free  <email protected> address at http://mail.yahoo.com 

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-general-unsubscribe <email protected>
For additional commands, e-mail: php-general-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>

_______________________________________________________
Site Design, Hosting, and E-Commerce at www.webpipe.net

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-general-unsubscribe <email protected>
For additional commands, e-mail: php-general-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>