markvaughn2006 Posted September 29, 2009 Share Posted September 29, 2009 I know this is a dumb question I just need to make sure about this... I keep reading that you should never put "sensitive" php files or pages in your root directory. I'm a little unclear of what that means, I have Godaddy, so the root directory is /html or something like that. So if I put my php files in /html/another_folder is that still in my root directory?? Thanks for any info!! Link to comment https://forums.phpfreaks.com/topic/175991-php-security/ Share on other sites More sharing options...
trq Posted September 29, 2009 Share Posted September 29, 2009 So if I put my php files in /html/another_folder is that still in my root directory?? No, that's a sub-directory of root, but it is still accessible via the web. I would assume what you have read is not to put the files in web accessible directories, makes more sense. Link to comment https://forums.phpfreaks.com/topic/175991-php-security/#findComment-927353 Share on other sites More sharing options...
markvaughn2006 Posted September 29, 2009 Author Share Posted September 29, 2009 is there any validity to not putting php files in a web accessible directory?? How would someone be able to download php files? I thought it converted to html before they could get a hold of it...thanks again Link to comment https://forums.phpfreaks.com/topic/175991-php-security/#findComment-927360 Share on other sites More sharing options...
trq Posted September 30, 2009 Share Posted September 30, 2009 The only possibility is if for some reason your server stops serving php properly. This could lead to people being able to see your php files (and any passwords or whatever within them) in plain text. Link to comment https://forums.phpfreaks.com/topic/175991-php-security/#findComment-927409 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.