I'm not very familiar with MySQL database yet, so I hired someone to set it up for me to get opt-in emails for my webpage. Today, he wants the FTP password and address. I personally don't know the guy very well, but is this safe? Is there some kind of security measures I should take rather than changing passwords?
I am not overly familiar myself but my programmer has had access to my ftp accountd to do mysql work. The only way round it would be to ask him to change the files and then send them to you for you to upload them if that is possible.
Does he need access to the server or does he just need to know the DB login details for him to input into a config file? In which case couldn't anyone upload the config files and any additional files that are needed?
if the programmer knows what he is doing, he will make installation to the script, you upload all files in a directory, then you run in the browser a file to create tables, then you delete that file, like all php based software does.
One cannot setup MySQL database through FTP access. If you want I can do the work for you... BUt you'll have to give me the control panel password
Only thign he needs to do in FTP is edit a config file. Everything else is done through cPanel which we can walk you through without requiring access if you need. Thanks,
You can't setup MySQL databases through FTP. He probably has a script that he wants to upload and run to setup the database. If that's the case and you don't trust him, ask him to send you the file so you can upload it yourself and run it. - or - You could setup another FTP account/pass and limit it to only a certain directory.
FTP access cannot allow users to make changes to Databases. He'll need PHPMYADMIN Access... FTP access for script changes and PHPMYADMIN access for MySQL changes.
If he is installing mysql on the box, he will def need to be able to upload it, compile, etc. Give'm access!