I am new to MySQL and MYDAC

Discussion of open issues, suggestions and bugs regarding MyDAC (Data Access Components for MySQL) for Delphi, C++Builder, Lazarus (and FPC)
Post Reply
mysqluser
Posts: 27
Joined: Fri 17 Nov 2006 11:48

I am new to MySQL and MYDAC

Post by mysqluser » Fri 17 Nov 2006 11:58

hello, i'm new to mysql and MYDAC and have some questions about it. at the beginning i must say sorry for my very bad english 8)

okay.... here we go: i like to use a mysql database for some reasons, also there will be possible to create useraccounts like valve steam, phpbb, and so on, that users can login over the software and use the input from database, search the database and so on.

1. how do i creat at the best way a useraccount. because i'm new on it, i don't know which secure options i have to use for it, that it will be a best way to creat and manage useraccounts. currently i use the following way to create a new user:

Code: Select all

		App->MyQuery->SQL->Text = "select * from Useraccounts";
		App->MyQuery->Open();
		App->MyQuery->Insert();
		App->MyQuery->FieldByName("ID")->AsString = local_ID;
		....
		....
		....
		....
		App->MyQuery->Post();
this is without checking if the user already exists. my question here is: a) is the creating way good and b) how do i check if a user already exists?

2. also i have some questions on security with mysql remote access and MYDAC. how can i crypt the database passwort or is it already cryptet by MYDAC? because i saw **** in the objectinspetor by designtime.

3. how can i do a crypted login that no user can crab the database password over an packetsniffer? i saw MYDAC supports SSL, is that a good way to crypt logins to database?

hope you can help me :D
Top
mysqluser
Posts: 27
Joined: Fri 17 Nov 2006 11:48

Post by mysqluser » Sun 19 Nov 2006 14:50

:roll:
Top
Antaeus
Posts: 2098
Joined: Tue 14 Feb 2006 10:14

Post by Antaeus » Mon 20 Nov 2006 07:39

1)
This depends on your version of MySQL Server. For example, the CREATE USER statement was added in MySQL 5.0.2. Please refer to the corresponding topic of the MySQL Reference Manual for more information.
2)
MyDAC encrypts the password before sending it to the server. It is stored in the dfm in in plain text.
3)
Encrypting login and password only is not enough for safe working because the traffic between the client and the server can can be intercepted in any moment. To achieve a high level of data protection you should use SSH Tunneling or SSL.
Top
mysqluser
Posts: 27
Joined: Fri 17 Nov 2006 11:48

Post by mysqluser » Thu 23 Nov 2006 02:17

thanks 8)
Top
Post Reply

Return to “MySQL Data Access Components”