[prog] PHP script security

[Elizabeth Barham]

Beth writes:

> I've set up a restricted MySQL user for the script to invoke which
> has SELECT priviledges only for the database.  One question is, I've
> put the username and password for that restricted account in the
> script.  Is this how it's commonly done?  Is this an okay way to do
> this?

That's how I do it and the authors of the books I used to learn CGI
coding did that as well so I believe that is the most-often used
method.

Elizabeth