RE: [PHP] How secure is this? From: WreckRman2 (wreckrman2 <email protected>)
Date: 12/29/00

I use the following code to connect and the only way to get the
username/password is if you have access to the raw file.

$connection = mysql_connect ("localhost", "username", "password");
if ($connection == false){
  echo mysql_errno().": ".mysql_error()."<BR>";
  exit;
}

-----Original Message-----
From: Sefton [mailto:c.sefton <email protected>]
Sent: Friday, December 29, 2000 5:22 PM
To: php-general <email protected>
Subject: [PHP] How secure is this?

I have setup a page that accesses mysql. The page has to included the
account login name and password to access the mysql database.
Example...

<?php
    $user = "username"; //actual username goes here
    $pass = "password"; //actual password goes here

    $db = mysql_connect("localhost", $user, $pass)OR DIE("Unable to connect
to database");
?>

If you get the idea.

My concern is what if somebody can get to the source code. It could ruin me.
I realise the php is a server side language, but is there any way that
somebody could read this. If so how do i stop it? or is there another way to
store my username & password that cannot be read.

Please help

Thanks

Chris 

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-general-unsubscribe <email protected>
For additional commands, e-mail: php-general-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-general-unsubscribe <email protected>
For additional commands, e-mail: php-general-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>