[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re:[2] Re:[2] [cobalt-users] payment method

Subject: Re:[2] Re:[2] [cobalt-users] payment method
From: RaQ3 <cobalt@xxxxxxxxxxx>
Date: Sat Feb 17 22:51:02 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

"Bill" <bill@xxxxxxxxxxxxxxxxxxxx> wrote on 12.02.01 22:18:27:
>
>> Hi Bill !
>>
>> I don't understand your approach. If you have only MySQL on this 
>> server, 
>it
>> means that you are running the php-files on another server. I could 
>> walk 
>into
>> this, pick the .php-files, read them - and connect to your MySQL-
>> Server. Where is the difference ?
>> Thomas
>
>Hi Thomas,
>
>I may have been unclear.  Our PHP files are on the same server with the
>MySQL database.  No customer sites are on this same server.  Therefore,
>customers cannot browser through the server to view files.

Hi Bill !

OK - that does make sense ... ;-)

How safe, in general, are the .php-files on a normal apache ?  As long 
as they are always parsed there is obviously no problem. But what about 
other methods to grab the files itself ?

We are doing some things with php too since we like it a lot. But we are
not 100% sure of the security issues there. Especially if you store 
MySQL passwords in the code. What about using something like 'include' ?

Thanx for any ideas !
Thomas

--
InternAd.de
Internet Advertising
Thomas Prosi
tp@xxxxxxxxxxx

Prev by Date: Re: [cobalt-users] Scheduled FTP
Next by Date: Re:[2] [cobalt-users] reccomendations for a collocation company
Previous by thread: [cobalt-users] Ethernet port of cobalt RaQ4
Next by thread: Re:[2] [cobalt-users] reccomendations for a collocation company

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index