![]() It looks something like this: CREATE USER IDENTIFIED BY 'secret-password' To prevent a user from seeing a table, don't grant her the SELECT privilege on that table. Then grant each user access to the databases and tables she's allowed to see. Use phpMyadmin's user management page to do this. Set up multiple MySQL accounts, preferably one for each different person who will access your data base. Cybercriminals know how to find that stuff. For your web application to use that data it will need the key to decrypt that data. If they do that, it doesn't matter whether you've encrypted those bank account numbers. If somebody cracks your system, they probably will crack your "control panel" - your web application. Good.īut: your most dangerous threat is not your staff and volunteers who can see your phpMyadmin pages. There's something in church work somewhere about avoiding temptation :-), and you're helping that. I appreciate your attempt to keep personal information invisible to people among your staff and volunteers who don't need to know it. You don't want sole responsibility for this. But be careful with names, genders, and ages of children.Īt any rate, get the approval of your church's leadership for this project. ![]() ![]() That's the same stuff that's in your published directory. It's simply not fair to your church's members to put them at risk this way. If I may speak as someone who's both an ordained pastor and a computer programmer, I urge you not to do this. If you store bank account details, an intruder into your system will be able to commit identity theft and bank fraud against the persons whose information is recorded. An observation: You are proposing to store Personally Identifiable Information in your system. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |