Leif, I appreciate your security concerns and I've tried to keep
reasonably secure:
My present setup security setup is to (1) run all access to my db
sites (all on a single cloud server running Ubuntu 10.04 LTS) through
an SSL/TLS connection and (2) require a user name and password using
Apache htdigest to access the db data. I also restrict the remote db
port access to the IP address of the remote server.
At the moment I use MySQL for my classmate contact data (but I have
PostgreSQL up and running and plan to change over soon). Currently I
only allow update access to the secretary of the class (and those she
passes the credentials to) through a separate user name and password.
I run a cron job from my server at home which, through ssh, dumps the
remote db and copies it back here and commits it to my bazaar
repository for version control. I periodically review changes and can
modify error inputs and push the corrected db back to the remote
server and completely reload the db as good as new. The local bazaar
repository is also periodically backed up onto two other hard drives
via a cron job, and I swap one of the drives periodically with one in
my bank safe deposit box.
It may not be a perfect system, but there are no state secrets there
and I think it's good enough for the data being contained. However,
criticisms are always welcome.
I have browsed your code and it will take some study and
experimentation (and maybe extension) to use it for my immediate
purposes (although I see that expanding to family geneology, too).
I did notice in file "./ddl/README.txt" you mention file "dbinit.sql"
but I can't find it. I assume that code is incorporated now into
"datadef.sql"?
Thanks for your hard work and the release of it to the world.
Best regards,
-Tom
I'm not sure if that means I'm correct or the file is still needed.
At any rate, I'm trying to get the exampledb to work on my test-bed
web site so, if the file is necessary, could I get a copy, please!
Regards,
-Tom
Good idea!
Regards,
-Tom