|
|
Posted by Jerry Stuckle on 10/09/07 11:45
Shmuel wrote:
>> The mysql_connect() call gets the password your website uses on the
>> database. That should NOT be the same as your user's passwords.
>> Rather, it should be something you keep secret from anyone else.
>
> Yes, but I connect to the user's database (over the net) dynamically,
> getting the values from my database. I'm working on a CMS that
> is used to modify data in databases that are not on the same server,
> they are wherever the user have them. And also I don't have access
> to the mysql database on my hosting provider, so I couldn't store
> there the user details there.
>
>
>
>
First of all, most hosts disallow connections from over the internet,
for security reasons. I know all of my sites are like that. You can
connect from the server Apache is running on, but that's all. So right
there you're going to have a problem.
And you wouldn't store them in the mysql tables, anyway. That would be
the userid and passwords for your MySQL. You store them in your own tables.
And finally, you need to be asking these questions in
comp.databases.mysql. None of this has anything to do with PHP.
--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@attglobal.net
==================
Navigation:
[Reply to this message]
|