Posted by Captain Paralytic on 03/01/07 13:00

On 1 Mar, 10:19, "Stevene" <steve.with.the.h...@gmail.com> wrote:
> > I connect to my database in a way that I think is pretty unsecure.
> > <?
> > $dbh=mysql_connect ("localhost", "database", "password")
> > or die ('I cannot connect to the database because: ' . mysql_error());
> > mysql_select_db ("database_table");
> > echo "<p>Database selected...\n";
>
> I'm new to php development, in particular, and I am curious, why is
> this method insecure? Are there ways around the preprocessor so that
> the script can be read?

Generally no, but there cold be occasions, such as when changes are
made to the server, where the preprocessor may not be functioning.

• Next in forum: Re: Connection Script... a better way?
• Prev in forum: Re: Connection Script... a better way?
• Thread view: Re: Connection Script... a better way?

[Reply to this message]