I am kind of rookie at the CGI thing and have a design question. How do I handle the mysql login in? As a temporary measure I have the root password hard coded into the script..which I know is wrong.
How do others handle this? do you grant each user access using the mysql grant command or set up your own user table?
also do you store the password in a cookie or can you just log a person in at the beginning of the session and it will stick through all the screens?
Has anyone ever seen a book or guide with this level detail on security/design issues?
thanks for any help.