[Techtalk] SQL learning pointers

[Mary]

On Mon, Dec 02, 2002, Lisi wrote:
> Make sure your db connect info is in a directory that is not
> accessible by the web browser, and include the file with that info in
> any script that connects to the DB. PHP has many built-in functions to
> work with MySQL, it's a great combo. Perl as well.

Since under normal webserver setups, files like this need to be
world-readable (that is, readable by any user on the machine), you
should be extra careful on systems on which you do not trust the other
local users (say you're buying webspace from a hosting provider). Such
hosts normally have the capacity to run scripts as you, using something
like Apache's suEXEC mechanism, meaning the files only need to be
user-readable.

-Mary