On Monday 18 July 2005 18:53, Lawrence Kennon wrote:
> In my current hosting situation I don't have the ability to store my
> file that contains MySQL userids/passwords in a subdirectory that is
> not under the server root. In order to protect it from being included
> from a foreign host I thought
In my current hosting situation I don't have the ability to store my file
that contains MySQL userids/passwords in a subdirectory that is not under
the server root. In order to protect it from being included from a foreign
host I thought up this scheme of using the php_uname function to check th
On Thu, 6 Nov 2003 09:09:57 -0500, you wrote:
>True, true. I actually use MD5() for the same reason, but, really, if
>someone has access to the database to read the hashes, odds are they have
>access to the rest of the database and your code. So what are you protecting
>really?
Many people use th
Shaun wrote:
"John Nichel" <[EMAIL PROTECTED]> wrote in message
Not that this would make your site more secure (well, I guess it would
be more secure than plain text), but just use it in your query
INSERT INTO someDB.someTable ( username, password ) VALUES (
'{$username}', PASSWORD('{$password
"John Nichel" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> Shaun wrote:
>
> > Hi,
> >
> > I am trying to make my site more secure, can anyone suggest a tutorial
on
> > using the mySQL password function with PHP. I can't find anything
through
> > google...
> >
> > Thanks for your h
Shaun wrote:
Hi,
I am trying to make my site more secure, can anyone suggest a tutorial on
using the mySQL password function with PHP. I can't find anything through
google...
Thanks for your help
Not that this would make your site more secure (well, I guess it would
be more secure than plain te
From: "Raditha Dissanayake" <[EMAIL PROTECTED]>
> >Oh, and this will do almost NOTHING to make your site more secure. Why do
> >you think it will?
>
> You are partly right about this we had a nice flame war about this very
> issue couple of weeks ago on the jabber lists. Anyone interested in the
>
Hi,
Oh, and this will do almost NOTHING to make your site more secure. Why do
you think it will?
---John Holmes...
You are partly right about this we had a nice flame war about this very
issue couple of weeks ago on the jabber lists. Anyone interested in the
nitty gritty can google on the ja
From: "Raditha Dissanayake" <[EMAIL PROTECTED]>
> From: "Shaun"
> >I am trying to make my site more secure, can anyone suggest a tutorial on
> >using the mySQL password function with PHP. I can't find anything through
> >google...
>
> it's very simple intead of using
> insert into users set userPas
Hi,
it's very simple intead of using
insert into users set userPassword='123'; you say
insert into users set userPassword=password('123');
Shaun wrote:
Hi,
I am trying to make my site more secure, can anyone suggest a tutorial on
using the mySQL password function with PHP. I can't find anything t
Hi,
I am trying to make my site more secure, can anyone suggest a tutorial on
using the mySQL password function with PHP. I can't find anything through
google...
Thanks for your help
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
-Original Message-
> From: Murat Ö. [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, September 22, 2002 9:33 AM
> To: [EMAIL PROTECTED]
> Subject: [PHP] mysql password function
>
> hi,
> i want to encode a string that users enter with mysql password
function.
> but
> som
hi,
i want to encode a string that users enter with mysql password function. but
sometimes this code works sometimes don't. mysql warns me:
Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result
resource in
the code is:
$result=mysql_query("select password(".$_POST[
If I insert a row's field's value using the PASSWORD() function, will I need
to use it or another function to find that row using the same field?
-
[EMAIL PROTECTED]
http://www.cool-palace.com
--
PHP General Mailing List (http://www.php.net/)
To uns
> Mmm.. think you misinterpreted my question...
>
>
> http://www.mysql.com/doc/M/i/Miscellaneous_functions.html
>
> PASSWORD(str)
> how do you unPASSWORD(str) in PHP?
Basically, you don't.
Instead, what you do is use the password that was provided as user
input. You create a suitable
ECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, July 30, 2002 4:31 PM
Subject: Re: [PHP] MySQL password()
> Try doing on the first time this:
> $query="SELECT * FROM users where username='$PHP_AUTH_USER' and passwd
> =password($PHP_AUTH_PW)";
> then wi
Hi all,
I do this:
dbconnect();
$query="SELECT * FROM users where username='$PHP_AUTH_USER'";
$result=mysql_query($query);
$list=mysql_fetch_array($result);
if ($PHP_AUTH_PW !== $list[passwd] || "" == $PHP_AUTH_PW || "all" !=
$list[domain]){
Header("WWW-authenticate: basic realm=\"EM
variable and access it from
PHP, you can do this, but i dont know how ;) becuase
i've never had to do it.
beware of any security risks that this might open you
up for... storing passwords as env. vars
> -Original Message-
> From: Jack Sasportas [mailto:[EMAIL PROTECTED]]
>
Can you connect to MySQL manually?
If so, then you should be able to connect with PHP's
mysql_connect($username,$password,$host);
__John Monfort_
_+---+_
P E P I E D E S I G N S
www.pepiedesigns.com
"The world is wa
pass the parameter -p and it will ask you for the password
Andreas Pucko wrote:
> Hello,
>
> I am trying to get mysql running and connect via php to it.
>
> how can I set the password in a unixshell to get access to it?
>
> When I try to access the db I get:
>
> Warning: MySQL Connection Fai
Hello,
I am trying to get mysql running and connect via php to it.
how can I set the password in a unixshell to get access to it?
When I try to access the db I get:
Warning: MySQL Connection Failed: Access denied for user: 'root@localhost'
(Using password: NO) in /psr/mysqladmin/lib.inc.php o
One way to handle this is to put your password (along with any other
database details)
into a config file (eg. yoursite.cfg) and include/require this file in
your script. The config file can then be stored outside the web tree,
and referred to with an absolute path.
Mick
On Tue, 30 Jan 2001, Eg
I know that ~.my.cnf with
[client]
password={mypass}
is the recommended method of securing your MySQL password when using a
shell command line to access MySQL.
But what is the recommended method for MySQL password security via
PHP? Is there some way to make it use the ~.my.cnf file?
It se
23 matches
Mail list logo
