Flashblocks Flash CMS
Welcome, Guest
Please Login or Register.    Lost Password?
Flashblocks Flash CMS Flashblocks ML Flashblocks 1 Questions
Re:mysql security question (1 viewing) (1) Guests
Go to bottom Post Reply Favoured: 0
TOPIC: Re:mysql security question
#123
gemdesign ()
Click here to see the profile of this user
Birthdate:
 
mysql security question 3 Years, 6 Months ago
Hi, I have a question regarding the AMFPHP remoting function.

If a SQL select sentence is stored in flash, would it not create a security hole? I'm thinking it would be possible to download the swf file, decompile it and alter the sql sentences?

Just downloaded the 1.4 upgrade, looking forward to trying it out. When will a tutorial on mysql be available?

Thanks for a great product by the way!

Best regards,
Kjetil Horneland
www.gemdesign.no
 
Report to moderator   Logged Logged  
  The administrator has disabled public write access.
#124
admin ()
User Online Now Click here to see the profile of this user
Flashblocks Birthdate: 2005-02-14
 
Re:mysql security question 3 Years, 6 Months ago
I have been wondering a similar thing, if someone could step between the flash movie and the server and rewrite the MySQL code being sent to the mySQL execution script. It would probably be better to have all the mySQL commands that you needed hard coded into individual scripts/commands to be called through AMFPHP. That way it is less likely that someone could erase your database.

I need to do more testing and research before I support the new functionality.

By the way, AMFPHP 1.0 milestone 1 released.
http://www.5etdemi.com/blog/archives/2005/06/amfphp-10-milestone-1-released/
I will be integrating the latest builds into flashblocks.

Thanks for the note.
 
Report to moderator   Logged Logged  
  The administrator has disabled public write access.
Go to top Post Reply
get the latest posts directly to your desktop
 

Thank you