|
Posted by Justin Koivisto on 09/27/11 11:28
Marcus wrote:
> Lastly, I was also wondering if it matters that I use mysql_connect() on
> every page in the event I do not SSL every page... please correct me if
> I am wrong, but since it resides on the server, I don't *think* the
> database password, which is stored in the php file in plain text, should
> ever actually be transported across the network. I have not been able
> to confirm this however.
The password is *never* sent through the network if you are connecting
to the localhost via a socket.
--
Justin Koivisto, ZCE - justin@koivi.com
http://koivi.com
[Back to original message]
|