I wrote a script in php that accesses a mySQL database. The database has a table that contains email addresses. If I google one of the email addresses I come up with the following: phpMyAdmin 3, jamesbakertpa@yahoo.com, Mr. Baker. Edit • Delete, 176, Bob.Shaye@newline.com, Robert, Shaye. Edit • Delete, 177, Michael.Lynne@newline.com, Michael ... http://www.florida-family.org/phpmyadmin/sql.php?lang=en-utf-8&server=1&collation_connection=utf8_genera... - 67k - Cached - Similar pages This search is going right into my database and pulling info from it. I googled another email and it gave me all the emails in the database. My IPS is telling me that I must secure the data thru my web code. Can you help me. I don't know exactly what I need to do to secure this info?
You've got a problem for sure. Everybody can get into your phpmyadmin and do all they want with your DB? Did you install it yourself? In that case you might visit the phpmyadmin site and look for answers there. I can't help you. Never installed phpmyadmin or mysql myself anywhere.
make sure to give protection into the script,can use whit .htaccess ,also check the META stuff ,google/yahoo bot will check you site header to put on search engine.
Are you using root access for all your scripts? Do check in the phpmyadmin if the users privileges are local to the database or global.
Oh dear...spidered and news aggregated in one day ! SPIDERED & INDEXED IN ONE DAY ! Also, cached ! CACHED VERSION Looks like it is fixed now though...