Yeah, while you could use php as a way to access mysql it's not secure using GET vars and sending whole queries is very insecure since anyone who had access to the script could manipulate the database. Of course sending the password as a GET variable could make it slightly more secure if someone just had the script, but if you were connecting from graal clientside someone could just use a packet sniffer and get the info.
If you're going to access mysql through graal via php you should check the IP address of the person who called the script. This way you can limit it to the graal server getting access to your database. Of course this would make it impossible to connect to your database from a clientside script.
Quote:
I thought it was
requestmysql(server,account,password,database,quer y);
|
That would be a terribly inefficient way of connecting to mysql since it would make a new connection to mysql every time it performed a query.
Keep in mind too, that querying mysql on another machine is, in most cases, going to be slower than creating a database npc to do the job.