|
|
Welcome to the Computer Webmaster Gaming Console Graphics Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact us. |
| |||||||
| PHP PHP for some can be one of the hardest website programming codes, so do you need help on your PHP script, if it is php4, php5 or lower this is the place for you for any PHP help. |
 |
| | LinkBack | Thread Tools | Display Modes |
07-01-2007, 3:33 PM
| #1 | ||
 |
The web host I use doesn't support SSL certificates, but I would like to at least use a fairly stiff encryption/decryption routine to store certain data. The data to be hidden won't be anything drastically vital like credit cards or anything, but I do want to keep the casual snooper out. Does anybody know of a good script set that would help in this area? Also, what's a good way to keep a MySQL connection login (user name and password) hidden from snoopers? I don't like seeing them plainly visible in a PHP script used to connect to an SQL database on the server. thx -- Robert Oschler "Let the web hear you, add your voice to your web site in minutes!" -- http://audiodirect.spiderchase.com/ (For a limited time, free voiceover with every sign-up, use this link instead) -- http://audio.spiderchase.com/ | ||
      |
| Advertisements |
|
07-01-2007, 3:33 PM
| #2 | ||
| |
> Also, what's a good way to keep a MySQL connection login (user name and > password) hidden from snoopers? I don't like seeing them plainly visible > in a PHP script used to connect to an SQL database on the server. It's not a perfect solution, but keep your connection scripts in a directory *below* your public_html directory so that it's not accessible except via scripts. eg if ~user/public_html is the base directory for your served pages keep connection scripts in ~user/inc | ||
| |
|
07-01-2007, 3:35 PM
| #3 | ||
| |
"Robert Oschler" <no_replies@fake_email_address.invalid> wrote in message news:lzZOa.11017$Hw.8242926@news2.news.adelphia.ne t... > The web host I use doesn't support SSL certificates, but I would like to at > least use a fairly stiff encryption/decryption routine to store certain > data. The data to be hidden won't be anything drastically vital like credit > cards or anything, but I do want to keep the casual snooper out. > > Does anybody know of a good script set that would help in this area? > > Also, what's a good way to keep a MySQL connection login (user name and > password) hidden from snoopers? I don't like seeing them plainly visible > in a PHP script used to connect to an SQL database on the server. > > thx > > -- > > Robert Oschler > "Let the web hear you, add your voice to your web site in minutes!" > -- http://audiodirect.spiderchase.com/ > (For a limited time, free voiceover with every sign-up, use this link > instead) > -- http://audio.spiderchase.com/ > > Hi Robert, take a look in PHP Classes http://ronbarnett.users.phpclasses.org/ There are a number of encryption routines there, some for MySQL and some for text files too. There is a particularly nice one using a salt generated from some system variables and microtime which then creates an MD5 , so you get a 128bit key with huge entropy from quite a short initial seed. Regards Ron | ||
| |
|
07-01-2007, 3:38 PM
| #4 | ||
| |
Robert Oschler wrote: > The web host I use doesn't support SSL certificates, but I would like to at > least use a fairly stiff encryption/decryption routine to store certain > data. The data to be hidden won't be anything drastically vital like credit > cards or anything, but I do want to keep the casual snooper out. > > Does anybody know of a good script set that would help in this area? > > Also, what's a good way to keep a MySQL connection login (user name and > password) hidden from snoopers? I don't like seeing them plainly visible > in a PHP script used to connect to an SQL database on the server. For the encryption, try str_rot13() -- it's unbreakable :o) For the logins, I use an include file that's not in a web-accessable directory. That way, if PHP even goes kaplunk, your password isn't exposed. Helps when changing username and password, too. Shawn -- Shawn Wilson shawn@glassgiant.com http://www.glassgiant.com | ||
| |
| Featured Websites | ||||
|
|
| Tags: encryptingdecrypting, good, method, simple, strings |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Best Method using PHP & HTML ?? | James | PHP | 9 | 07-01-2007 3:17 PM |
| best method for simple web menu | buckwheat | Graphics in general | 4 | 06-11-2007 8:06 PM |
| Best payment method? | Graham | Ebay Technical Questions | 0 | 05-30-2007 1:36 AM |
| Best payment method? | Dave | Ebay Technical Questions | 0 | 05-30-2007 1:36 AM |
| Where's info on search for partial strings? (e.g., wildcards, regular expressions, ...) | david.goggin@gmail.com | MSN questions | 0 | 05-28-2007 1:45 AM |
| Featured Websites | ||||
|
Good simple method for encrypting/decrypting strings? 
PacMan
Linear Mode
