Code Forums - View Single Post

redhead · 04-09-2005, 07:49 PM

when using .inc anybody can view your source. if they encounter an error saying:
Error found in /web_space_user/include/my_php.inc they can try to fetch it directly,m viewing it as clear text, giving them a view in to your coding habit. If you like to use md5sum() or what ever...
It is very unsecure to call your include files .inc. or anything else that isn't executed by teh web server.

04-09-2005, 07:49 PM	#8 (permalink)
redhead Newbie Join Date: Jun 2002 Location: Denmark Posts: 1,694	when using .inc anybody can view your source. if they encounter an error saying: Error found in /web_space_user/include/my_php.inc they can try to fetch it directly,m viewing it as clear text, giving them a view in to your coding habit. If you like to use md5sum() or what ever... It is very unsecure to call your include files .inc. or anything else that isn't executed by teh web server. __________________ Don't worry Ma'am, We're university students, We know what We're doing. ----- If you pull the pin, Mr.Grenade would no longer be your friend. ----- 01000111 01101111 00100000 01000011 00100000 00100001