MySQL: PHP or direct access?

Ralph DiMola rdimola at evergreeninfo.net
Thu Aug 13 19:34:02 CEST 2015


Peter,

Good question. Why is LC server instead of PHP not an option for you?  I
know this has been talked about on the list before but I still don't have a
solid handle on this. I'm still am not clear on how SQL injection can be
done with a direct MySQL connection using ssl. Also when using a web service
(LC server, PHP...) to access a MySQL DB over https what are the
vulnerabilities?

Ralph DiMola
IT Director
Evergreen Information Services
rdimola at evergreeninfo.net

-----Original Message-----
From: use-livecode [mailto:use-livecode-bounces at lists.runrev.com] On Behalf
Of Peter Haworth
Sent: Thursday, August 13, 2015 1:17 PM
To: How to use LiveCode
Subject: mySQL: PHP or direct access?

What are the pluses and minuses you get from using php as a middleman to
access a mySQL database on a server versus accessing the mySQL database
directly from LC?

Web sources typically mention two main benefits: php runs on any platform,
and it's easier to create dynamic web pages.  I think the first one really
has to do with using php over any other server side language rather than
direct vs indirect db access.

So assuming I have a Livecode application that does not generate dynamic web
pages, what other reasons might there be to use php (or not)?  And if I do
use php, how do I protect against sql injection attacks?
_______________________________________________
use-livecode mailing list
use-livecode at lists.runrev.com
Please visit this url to subscribe, unsubscribe and manage your subscription
preferences:
http://lists.runrev.com/mailman/listinfo/use-livecode




More information about the use-livecode mailing list