What is it exactly that you need to achieve?
PHP script doesnt read a MySQL data files, MySQL server does. You can
configure your S and filesystem rights, so that only MySQL server can
read them.
Ales.
Forwarded message
From: "Suhas Pharkute" <psuhas (AT) gmail (DOT) com>
To: mysql (AT) lists (DOT) mysql.com
Date: Mon, 29 Jan 2007 11:48:27 -0700
Subject: Safe DB Distribution
HI,
I want to distribute the MySQL DB to different user with an PHP web app. My
biggest problem is MySQL data files. Is there anyway by which I can
configure the MySQL so that only PHP script can read it and if you happen to
copy the Data files and try to use it, that will be useless.
I know, this is been in discussion before, but if I can get any other idea
to it, I would appreciate it
Thank you in advance,
Suhas
>
>
>

Yep, I do understand that, but when I give DB to someone, I do not want them
to see the database. I want them to access the database thr' the php
application.

It is very simple, I don't want any one to see my DB in open way. But they
can access it thr' my app.

I agree with about file system, and that will work on Linux but
unfortunately I am working on Windows(98/NT/XP)

any ideas!!!

Thx
Suhas

1/29/07, Ales Zoulek <ales.zoulek (AT) gmail (DOT) comwrote:

What is it exactly that you need to achieve?

PHP script doesnt read a MySQL data files, MySQL server does. You can
configure your S and filesystem rights, so that only MySQL server can
read them.

Ales.
--
Forwarded message
From: "Suhas Pharkute" <psuhas (AT) gmail (DOT) com>
To: mysql (AT) lists (DOT) mysql.com
Date: Mon, 29 Jan 2007 11:48:27 -0700
Subject: Safe DB Distribution
HI,

I want to distribute the MySQL DB to different user with an PHP web app.
My
biggest problem is MySQL data files. Is there anyway by which I can
configure the MySQL so that only PHP script can read it and if you
happen to
copy the Data files and try to use it, that will be useless.

I know, this is been in discussion before, but if I can get any other
idea
to it, I would appreciate it

Thank you in advance,
Suhas
>
>
>
>
>

, I will explain it again,

I need a way so that if some body gets the DB files (.MYD and .MYI) from my
distribution, they can put it in their DB engine and can read my DB. I would
like to STP this stealing.

Is there any way?

Thanks
Suhas

1/29/07, Logan, David (SST - Adelaide) <David.Logan (AT) hp (DOT) comwrote:

Have you checked out
, you
should
be able to en/decrypt your data via these functions thereby rendering any
data on the disk totally useless unless the process comes through your
mysql
server. You will have to configure mysql with openssl support though, I'm
sure you would be able to find a package somewhere that has that
available.

You can then use mysql security to only allow access to the webserver user
so the php package is the only one that can access this.

Regards
--

_/ David Logan
_/ IT Delivery Specialist - Database
_/ Hewlett-Packard Australia Ltd
_/_/_/ _/_/_/ E-Mail: david.logan (AT) hp (DOT) com
_/ _/ _/ _/ Desk: +61 8 8408 4273
_/ _/ _/_/_/ Mobile: +61 417 268 665
_/
_/ Postal: 148 Frome Street,
_/ Adelaide SA 5001
Australia
i n v e n t

Message
From: Suhas Pharkute [mailto:psuhas (AT) gmail (DOT) com]
Sent: Tuesday, 30 January 2007 1:55 PM
To: Ales Zoulek
Cc: mysql (AT) lists (DOT) mysql.com
Subject: Re: Safe DB Distribution

Yep, I do understand that, but when I give DB to someone, I do not want
them
to see the database. I want them to access the database thr' the php
application.

It is very simple, I don't want any one to see my DB in open way. But they
can access it thr' my app.

I agree with about file system, and that will work on Linux but
unfortunately I am working on Windows(98/NT/XP)

any ideas!!!

Thx
Suhas

1/29/07, Ales Zoulek <ales.zoulek (AT) gmail (DOT) comwrote:

What is it exactly that you need to achieve?

PHP script doesnt read a MySQL data files, MySQL server does. You can
configure your S and filesystem rights, so that only MySQL server can
read them.

Ales.
--
Forwarded message
From: "Suhas Pharkute" <psuhas (AT) gmail (DOT) com>
To: mysql (AT) lists (DOT) mysql.com
Date: Mon, 29 Jan 2007 11:48:27 -0700
Subject: Safe DB Distribution
HI,

I want to distribute the MySQL DB to different user with an PHP web
app.
My
biggest problem is MySQL data files. Is there anyway by which I can
configure the MySQL so that only PHP script can read it and if you
happen to
copy the Data files and try to use it, that will be useless.

I know, this is been in discussion before, but if I can get any other
idea
to it, I would appreciate it

Thank you in advance,
Suhas
>
>
>
>
>

, I will explain it again,

I need a way so that if some body gets the DB files (.MYD and .MYI) from my
distribution, they can put it in their DB engine and can read my DB. I would
like to STP this stealing.

Is there any way?

Thanks
Suhas

1/29/07, Logan, David (SST - Adelaide) <David.Logan (AT) hp (DOT) comwrote:

Have you checked out
, you
should
be able to en/decrypt your data via these functions thereby rendering any
data on the disk totally useless unless the process comes through your
mysql
server. You will have to configure mysql with openssl support though, I'm
sure you would be able to find a package somewhere that has that
available.

You can then use mysql security to only allow access to the webserver user
so the php package is the only one that can access this.

Regards
--

_/ David Logan
_/ IT Delivery Specialist - Database
_/ Hewlett-Packard Australia Ltd
_/_/_/ _/_/_/ E-Mail: david.logan (AT) hp (DOT) com
_/ _/ _/ _/ Desk: +61 8 8408 4273
_/ _/ _/_/_/ Mobile: +61 417 268 665
_/
_/ Postal: 148 Frome Street,
_/ Adelaide SA 5001
Australia
i n v e n t

Message
From: Suhas Pharkute [mailto:psuhas (AT) gmail (DOT) com]
Sent: Tuesday, 30 January 2007 1:55 PM
To: Ales Zoulek
Cc: mysql (AT) lists (DOT) mysql.com
Subject: Re: Safe DB Distribution

Yep, I do understand that, but when I give DB to someone, I do not want
them
to see the database. I want them to access the database thr' the php
application.

It is very simple, I don't want any one to see my DB in open way. But they
can access it thr' my app.

I agree with about file system, and that will work on Linux but
unfortunately I am working on Windows(98/NT/XP)

any ideas!!!

Thx
Suhas

1/29/07, Ales Zoulek <ales.zoulek (AT) gmail (DOT) comwrote:

What is it exactly that you need to achieve?

PHP script doesnt read a MySQL data files, MySQL server does. You can
configure your S and filesystem rights, so that only MySQL server can
read them.

Ales.
--
Forwarded message
From: "Suhas Pharkute" <psuhas (AT) gmail (DOT) com>
To: mysql (AT) lists (DOT) mysql.com
Date: Mon, 29 Jan 2007 11:48:27 -0700
Subject: Safe DB Distribution
HI,

I want to distribute the MySQL DB to different user with an PHP web
app.
My
biggest problem is MySQL data files. Is there anyway by which I can
configure the MySQL so that only PHP script can read it and if you
happen to
copy the Data files and try to use it, that will be useless.

I know, this is been in discussion before, but if I can get any other
idea
to it, I would appreciate it

Thank you in advance,
Suhas
>
>
>
>
>

In the last episode (Jan 29), Suhas Pharkute said:
, I will explain it again,

I need a way so that if some body gets the DB files (.MYD and .MYI)
from my distribution, they can put it in their DB engine and can read
my DB. I would like to STP this stealing.

Is there any way?

If you also give them the php script, then no amount of encryption on
the DB files will help, since the user can simply look at the script
and see how it decrypts the records. If you write the program in a
compiled language like C and encrypt/decrypt the data before passing it
to mysql, it would be more difficult to extract the data, possibly
difficult enough that none of your users would try. You can't simply
use mysql's AES_ENCRYPT/AES_DECRYPT functions, since your user could
enable mysql's SQL logging option and read your key from the log.

1/30/07, Dan Nelson <dnelson (AT) allantgroup (DOT) comwrote:
In the last episode (Jan 29), Suhas Pharkute said:
, I will explain it again,

I need a way so that if some body gets the DB files (.MYD and .MYI)
from my distribution, they can put it in their DB engine and can read
my DB. I would like to STP this stealing.

Is there any way?

No, I guest there isn't. But I somewhat can't get rid of feeling, that the
problem is not in lack of mysql features, but in your software analysis.

Rgrds.

Ales