MySQL Forums
Forum List  »  PHP

Re: Secure Connections to MySQL
Posted by: James Zapico
Date: February 27, 2006 10:22PM

If MySQL is on the localhost, the security risks are very minimal under any normal use. Security risks are almost as minimal if MySQL is on the local network provided, in both cases, no user is allowed to connect from any host ("%"). An attacker would have to gain access to a computer on the network in order to attempt to compromise the connection.

Assuming the MySQL server is somewhere outside the intranet, the system of repeatedly connecting and disconnecting would give an attacker more opportunity to intercept password hashes to attempt to crack while the data itself is no more secure. In this system, it would be prudent to look into securing the connection with ssl.

To directly answer your question, this is an extremely ineffecient system with no tangible benefits to security. The connection is much more taxing on the server than a query is. As the site develops more traffic, the users may begin to notice a lag.

The concept of the class is not a new one and is a good idea. There are packages available through pear which accomplish this as well.

Options: ReplyQuote


Subject
Written By
Posted
February 27, 2006 06:19PM
Re: Secure Connections to MySQL
February 27, 2006 10:22PM
March 01, 2006 12:37PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.