Re: Re: Secure data management

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Tue, Oct 4, 2011 at 7:51 PM, Stuart Dallas <stuart@xxxxxxxx> wrote:
>  As for the overhead I very much doubt there's much difference between that and the overhead of prepared statements.

Probably not. As an aside, I'm really struggling to find a case where
it'd be worth base64-encoding the queries like that unless you were
both concerned about someone sniffing your queries over the wire and
sure that they wouldn't think to base-64 decode them. Not to mention
that if your grand idea to prevent eavesdropping is simple transforms,
you've got a larger problem on your hands.

It *will* work, as mysql's base64 decoder won't evaluate the decoded
string as a statement, afaik, but it will also expand the size of
stuff by around 30% while having a, imo, much better solution widely
available.

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php



[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux