bluwe Posted October 11, 2006 Share Posted October 11, 2006 Hiya,I'm just getting started in php/MySQL and I've noticed that to open a connection to your database in order to pass SQL statements to it you need to specify a username and password within the php code... Basically I'm worried about the security of having these credentials in a page on a public server. Am I right in saying that only the web server sees this information because it's inside php tags?Please forgive the stupid question!Cheers Link to comment https://forums.phpfreaks.com/topic/23706-newbie-security-concern-re-database-connection-parameters/ Share on other sites More sharing options...
fenway Posted October 11, 2006 Share Posted October 11, 2006 Assuming you've set up your web host properly, any .php file will be automatically executed, and thus never world-readable. So yes. Link to comment https://forums.phpfreaks.com/topic/23706-newbie-security-concern-re-database-connection-parameters/#findComment-107645 Share on other sites More sharing options...
bluwe Posted October 12, 2006 Author Share Posted October 12, 2006 Thanks, Fenway. :) Link to comment https://forums.phpfreaks.com/topic/23706-newbie-security-concern-re-database-connection-parameters/#findComment-107813 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.