Jump to content

Secure Code


banjax

Recommended Posts

And as long as Apache (or webserver in general) is configured to never echo php files when php is disabled for some reason. You can move php files containing sensitive data out of servers document root. That's much better solution than encrypting source.

Link to comment
https://forums.phpfreaks.com/topic/132549-secure-code/#findComment-689275
Share on other sites

You should always encrypt user passwords with MD5 (a one way hash). This ensures that no one will ever see the clear text password. Although it cannot be reversed, which is a good thing, it protects the user's password. Even if it is echo'd out, it would not do anyone any good.

 

That and I would hope user information is kept in a database such as MySQL.

Link to comment
https://forums.phpfreaks.com/topic/132549-secure-code/#findComment-689316
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.