Home > mailing lists

Re: [GENERAL] cgi with postgres - Mailing list pgsql-general

From	Jeff MacDonald
Subject	Re: [GENERAL] cgi with postgres
Date	January 17, 2000 01:47:53
Msg-id	Pine.BSF.4.10.10001162346500.435-100000@rage.hub.org Whole thread Raw
In response to	Re: [GENERAL] cgi with postgres (Ron Chmara <ron@Opus1.COM>)
List	pgsql-general

Tree view

ok.

lets get back to the point, i'm not worried about webusers,
so .htaccess is not an issue.

this all arouse when one of hub's clients who runs a course
evaluation system asked

'what's to stop someone from logging in to hub, writing a script
with my name in user=user in the dbi::connect function. then
making it enter a bunch of bogus data.'

at first i thought gee well just put a passwd on the database,
then i thought, gee that's stupid since it's stored in plain text.


======================================================
Jeff MacDonald
    jeff@pgsql.com    irc: bignose on EFnet
======================================================

pgsql-general by date:

From: moebius@ip-solutions.net
Date: 16 January 2000, 23:29:51
Subject: Re: [GENERAL] Debian php3+postgresql unable to connect

From: "John Henderson"
Date: 17 January 2000, 02:02:52
Subject: cursors

Re: [GENERAL] cgi with postgres - Mailing list pgsql-general

Previous

Next