[QUOTE=Genert;378777]Thanks for anserw Jemstar.
LuaSQL can be.
But I thinked for that you need to share the SQL host,database,password…This is big security leak:P
I thinked to it whole day in school.
The problem can be solved by saving everything to kills_deaths_guids_players.txt log.
And the server owner uploads a PHP script to his FTP,where the PHP script sends data to the database.
I need to read tutorials about the LUA now:D
Aha,the LUA functions are similar to PHP functions.
There isn’t any security leaks in VSP V0.46. The only security leak will be is if you do not have PHP / MySQL set up properly and expose your username and password to surfers. Not to mention the fact that it is really not a security leak. If you DO NOT use the root username and password for the stats database it is really not a problem. Also the fact the database CANNOT be reached from the outside world unless you allowed it to be. If that is the case then that in itself is a HUGE security risk itself. :eek: I can connect via CLI and really have a party with your databases. But I am ethical and a professional.
I have been using VSP since it first came out in 2004. Never before has there been any problems with ‘Security Leaks’ at all. The SQL injection exploit in gamestat.php has been addressed and has been fix in V 0.46. along with other requests from users. It is all spelled out for you and it is relatively easy to setup and use.
The database is only used to store and fetch data. Store data in the database from running against logs and then fetch the data from the database when the stats site is pulled up. It is very simple and easy to use. So what is the issue with ‘sharing’ a database. You just need a database for this purpose nothing more?
Also, you are talking about LuaSQL. A database which has not been updated in over 4 years! This tells me you have not done your homework. As MySQL recent release was at least this year?! IMO use something that is current. Get out of the stone age and get up-to-date.
Hope this clears things up a bit.
P.S. I found this because the link posted in Jemstar’s posting which showed up on the statistics page of the website. Thought I would check it out and see why it is was posted. Thanks for suggestion VSP, Jemstar.