SitePoint Sponsor

User Tag List

Results 1 to 3 of 3

Hybrid View

  1. #1
    SitePoint Addict
    Join Date
    Jul 2002
    Posts
    286
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Question PHP/SQL vs. CGI security?

    New to the programming/development scene. I know how to write code for PHP/MySQL. Designer I'm working with has been asked this question by a client:

    >>Is php/sql as "secure" as cgi?

    Is there a qualified answer that we can give?

    Thanks in advance.

    -JZ

  2. #2
    morphine for a wooden leg randem's Avatar
    Join Date
    Jun 2002
    Location
    .chicago.il.us
    Posts
    957
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    The qualified answer is that CGI is an interface specification, whereas PHP is a scripting engine.

    One is a banana, and the other is a wicker basket.
    ----Adopt-a-Sig----
    Your message here!

  3. #3
    SitePoint Enthusiast webinista's Avatar
    Join Date
    Oct 2002
    Location
    Stankonia
    Posts
    48
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    without knowing what your client means by "CGI" i'll offer this answer:

    PHP can be installed as a CGI binary (like Perl often is) rather than as an apache module. that can be more secure for scripts in that it's running as a specific Apache user with a set permissions, but it's not particularly related to SQL.

    CGI, however, is a specification for a server-client interaction.

    your client probably think CGI=Perl. but you can use PHP, Perl, C++ or Python, Tcl, etc. to develop CGI programs.

    CGI has security issues in-and-of itself that aren't language related.

    it sounds like there's an authentication interface issue that's the reason behind the question? my suggestion is to get more information about the *concerns* behind the question.
    Last edited by webinista; Oct 30, 2002 at 11:27.



Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •