Hi, My web hoster gave me a login and password with which i can connect to DB, perform some actions as DB owner / superuser just for my DB. If i use this login + password to connect and perform some actions from my web pages, everybody can hack my DB and do what they want. My web hoster will not give me some particular role/user with which user can only execute some stored procedure but can not administrate my DB. therefore, how can i make my web pages users connect to DB (with my administrator login and password) and run some stored procedure without risking to see my DB hacked ? thanks a lot, Alain
