Comments on: How easy is it for someone to download a php file from a website? http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/ php source code protection Fri, 10 Sep 2010 11:06:18 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: ryan n http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/comment-page-1/#comment-1497 ryan n Sat, 04 Jul 2009 12:55:09 +0000 http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/#comment-1497 don't put your db config file inside your public folder. For example, if your web root directory is "www", then have a "config" folder at the same level - . outside of your web root. Also you should be able to deny access to any of your public files by using a .htaccess file. don’t put your db config file inside your public folder. For example, if your web root directory is "www", then have a "config" folder at the same level – . outside of your web root.

Also you should be able to deny access to any of your public files by using a .htaccess file.

Report this comment

]]> By: AdamBeaz http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/comment-page-1/#comment-1498 AdamBeaz Sat, 04 Jul 2009 12:55:09 +0000 http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/#comment-1498 you may want to consider creating a separate db-connex.php file (or whatever name) and putting it in a random named folder and have an include statement pull it in before connecting to the database. This way you can put all of you DB username and DB passwords in that file as variables and only allow server sided includes in yourt php.ini Also add a little security to that folder and you should be just fine. you may want to consider creating a separate db-connex.php file (or whatever name) and putting it in a random named folder and have an include statement pull it in before connecting to the database. This way you can put all of you DB username and DB passwords in that file as variables and only allow server sided includes in yourt php.ini
Also add a little security to that folder and you should be just fine.

Report this comment

]]> By: bangali http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/comment-page-1/#comment-1499 bangali Sat, 04 Jul 2009 12:55:09 +0000 http://phparmor.com/php-source-code/how-easy-is-it-for-someone-to-download-a-php-file-from-a-website/#comment-1499 it is as easy as downloading an html file it is as easy as downloading an html file

Report this comment

]]>