Originally Posted by fivefeet8
Thanks. That makes it a bit easier to secure the remote Mysql Database. So does that mean that anyone logging in to the webhost running the PHP scripts will be able to access the remote mysql Database? From the sound of it, it should right?
They will have rights to connect to MySQL on the protocol/service level but will not have rights to the database unless they are authenticating with the same database username/password. Access to MySQL database objects (databases, tables, rights, etc) are controlled by the MySQL GRANT statement.
Basically, it's two methods of security.
1) Port security, only permit the web host to connect to MySQL. This keeps the script kiddies at bay and is good security.
2) Actual MySQL authentication.