Security issue

hey, is it possible allow ONLY the flash file on my server to interact with a database through php?

to ensure that somehow, somebody who knows the correct address couldn’t do something like type the address in their browser and change/delete everything:

http://www.myaddress.com/path to php files/delete_everything.php?member=admin”