i have a problem that after some days my database tables are empty by hacking or may b any other way. i want to know any body know how it possible. and how i prevent from this hacking.
There are many possible ways of tables being emptied form poor programming, hacking the website, hacking the database, people working out passwords to database or webserver admin through to SQL injection. Need to investigate the cause before you can plug the hole
SQL Injection sounds likely. I'd do the following: 1) Make sure that the server running MySQL is as locked down as possible. The only computer in the world that should be able to access port 3305 is the one running your website. Be sure you've not got other ports open unnecessarily. You probably just need 25 for SSL to your various admin locations, and 3305 to your web server. 2) Make sure you're not running anything like phpMyAdmin on your webserver, or that if you are, it's locked down correctly too, with as much authentication as possible (at the very least .htaccess authentication, but ideally this would be limited by IP address). 3) Check your entire web scripts to make sure that it properly cleanses data coming in from anywhere using something like mysql_escape_string before passing it to MySQL. 4) Change all passwords throughout your setup - your admin and SSL passwords on your web server and MySQL server, your MySQL user passwords, your FTP/SFTP passwords etc.