I am creating a web site for a non-profit org that basically just has static content but has an online registration page (registration for monthly events) where upon submit sends the form data to the database ive set up on the server.<br />
<br />
My question is other than the fact that ppl browsing through the web site won't be able to access the database because its in the "private" folder what is the next level of security that i could use to protect the info in the database. <br />
<br />
thanks<!--content-->Well, you could always use a secure connection for submitting info, such as SSL (I've never actually used it, though). To access a database, though, you'd need to be using a server-side language (PHP, ASP, ASP.NET, perl, CF...). The user would not be able to see the code for that, though, so it's pretty safe.<!--content-->
<br />
My question is other than the fact that ppl browsing through the web site won't be able to access the database because its in the "private" folder what is the next level of security that i could use to protect the info in the database. <br />
<br />
thanks<!--content-->Well, you could always use a secure connection for submitting info, such as SSL (I've never actually used it, though). To access a database, though, you'd need to be using a server-side language (PHP, ASP, ASP.NET, perl, CF...). The user would not be able to see the code for that, though, so it's pretty safe.<!--content-->