|
|
Posted by David Quinton on 08/18/06 08:40
On Fri, 18 Aug 2006 05:03:31 GMT, nobody@thisaddress.net wrote:
>$connect = mysql_connect("localhost","username","password");
>
>Is the above line of code a security risk to hackers and spammers? I
>know PHP is executed on the server side, but I feel having a file
>sitting on the server(http) with this sensitive info is vulnerable.
Personally I put passwords etc. in an Included file that is in a
directory that is not web-accessible. But, depending on your hosting
set up, this may not always be possible.
However, I reckon that having passwords within the php file (as in
your example) is very common practice.
--
Locate your Mobile phone: <http://www.bizorg.co.uk/news.html>
Great gifts: <http://www.ThisBritain.com/ASOS_popup.html>
Navigation:
[Reply to this message]
|