Task 6A-1

Done. No serious issues.

To connect to the MySQL Server, I had to define $link_id as follows:

$link_id = mysql_connect("localhost", "root", "";

where localhost is the server, and root is the connection username. I am not using a password on my testing server, hence the "" at the end.

Prior to this, I had $link_id = mysql_connect(); Which obviously did not give the desired results.

After using $link_id = mysql_connect("localhost", "root", "";, the connection was successful and I could list the databases and the tables.

Cool...

A Successful Nature Inspires Other People...

Completed, had also the same problem as DotKhoza but after i putted in my username and password all worked SQL in PHP is not so difficult!

$link_id = mysql_connect(); can be used when you have a user "nobody". Google for more info, but it is not recommended for security reasons. So no need to explain Poni is, for each databse you need to define a user and password, with appropriate rights as to what user can do or not do in the database. Tedious, but required. Of course, for purposes of this course you can just have one user which you associate with every database usinf the mysql database (user and db tables).

In my previous post I said "No serious issues". But I think it is a serious issue that you are able to see the contents of a database if you are able to connect to it (if you follow Task6A-1 &2).

I have read that "To connect to a remote server, just enter either the hostname (e.g. www.microsoft.com) or the IP address (e.g. 212.113.192.101) as the first parameter, and your data will be transparently sent over the Internet." (Souce:hudzilla.org/phpwiki/index.php)

I will test this later...

This sounds serious and emphasises the use of usernames and passwords in our databases.

We live in a country where every citizen's safety and security is a concern. It is , however, not much more of a concern than the security concerns in cyberspace. Fortunately cyberspace security is much more manageable and less dangerous to human lives as there is often a back-up...

Being able to list the records contained in a database surely made me think.

Safety goes a long way...

Cheers.

A Successful Nature Inspires Other People...

Really got involved with this one and had a great time. First time i have dealt with MySQL, as i am normally exposed to a bit of basic firebird.

I decided to make the database and table names hyperlinks, each revealing their contents on each click. Gave me a fill understanding of the tables. DotKhoza , try this code when u test your connection to a remote machine - it will reveal all !

<?php

$title = "Database Connection";
include ("header.php";

isset($_GET['db']) ? $db = ($_GET['db']) :$db = "none"; // echo $db;
isset($_GET['table']) ? $table = ($_GET['table']) :$table = "none"; // echo $table;

$mysqlserver = mysql_connect("localhost","root","12345";

if (!$mysqlserver)
die ("Oh well , it failed - the server says ".mysql_error() );

//---------------------------------------------------------------------------
// This will display the list of databases that are available :-

echo "<h3> The following databbases are avaialbe to this server</h3>";

$result = mysql_list_dbs();
while ($row = mysql_fetch_row($result))
{
echo "<a href=\"connect.php?db=$row[0] \">".$row[0]."</a><br>";
}
echo "<a href=connect.php>Collapse Thread</a>";

//----------------------------------------------------------------------------
// This will select the registration database and display all the tables :-

if ($db != "none"
{
echo "<h3> The following tables are in the ".$db." database</h3>";

mysql_select_db($db);
$result = mysql_list_tables($db);
while($row = mysql_fetch_row($result))
{
echo "<a href=\"connect.php?db=$db&table=$row[0]\">".$row[0]."</a><br>";
}
echo "<a href=\"connect.php?db=$db\">Collapse Thread</a>";

//--------------------------------------------------------------------------
// This will show the table contents of the database :-

if ($table != "none"
{
$result = mysql_query("SELECT count(*) from $table",$mysqlserver);
$count = mysql_fetch_row($result);
echo "<h3>",$count[0], " rows of data were found in the ", $table, " database</h3>";
if($count[0])
{
$result = mysql_query("SELECT * from $table",$mysqlserver);
while ($row = mysql_fetch_row($result))
{
print_r($row); echo "<br>"; //echo $row[0], "<br>";
}
}
else echo "The selected table is empty";
}
else
{
echo "<br><br> Click on a link above to reveal its field contents";
}
}
else
{
echo "<br><br> Click on a link above to reveal its table contents";
}
include ("footer.php";
?>


J

P.S - page is called connect.php - header.php & footer.php not included.

Completed

Thanks, Jclamp.

Cheers

A Successful Nature Inspires Other People...

Task Completed

Task completed. I used PhpMyAdmin to create a user studentphp and a password.

To connect to the MySQL Server, I had to define $link_id as $link_id = mysql_connect("localhost", "studentphp", "password" and then it connected successfully.

I was thinking about security in terms of being able to access such a file that contains the connect parameters and reveals the login credentials. Is there a way other than securing the webserver that hosts the php files, to hide the code as would be the case with a compiled programming language. i.e. where the source is not revealed?

Completed task, no problems.

Task completed.

Query:

I found this bookstore_db folder, containing
subject.frm
subject.MYD
subject.MYI
titles.frm
titles.MYD
titles.MYI

What do I do with these? Please help.

Under the mysql folder, e.g. C:\\program files\xampp\mysql go to the data folder, create a folder bookstore, and copy these files into that folder. These are database information - when you create a database through phpMyAdmin (or any other tool, the information is stored here...

Thank you!

All Good.

Nino

Completed successfully

Done.

Done

Completed