| SitePoint Sponsor |
I have 2 servers in separate locations and different IPs. One serves PHP and the other MySQL. When I use PDO to connect from one server to the other, is any type of security/encryption used in the DB credentials I pass around. If so, where can I read about it? Gleaning the php.net manual pages didn't turn anything up for me.
San Diego Freelance Web Development Contractor
Great Taste, no Filler. Now with no Trans Fat!
this is an over-simplification of the way mysql password verification works.
1) client hashes password provided by user.
2) client opens connection to server.
3) server sends a magic value to the client.
4) client hashes the already hashed password with the magic value and sends it to the server.
5) server retrieves the hashed password from the mysql.user table and hashes it with the magic value.
6) server compares the double-hashed values.
see http://forge.mysql.com/wiki/MySQL_In...erver_Protocol
Check out our new Industry News forum!
Keep up-to-date with the latest SP news in the Community Crier
I edit the SitePoint Podcast
Thanks longneck! Have a
San Diego Freelance Web Development Contractor
Great Taste, no Filler. Now with no Trans Fat!
Posting Permissions
Bookmarks