making a code mre secure

[rebelcreek]

Can anyone help me make this more secure?  I want to link the info to .inc instead of pulling this info straite from the page

 

// cPanel info
$cpuser = 'userhere'; // cPanel username
$cppass = 'passwordhere'; // cPanel password
$cpdomain = 'mysite.com'; // cPanel domain or IP
$cpskin = 'x';  // cPanel skin. Mostly x or x2. 
// See following URL to know how to determine your cPanel skin
// http://www.zubrag.com/articles/determine-cpanel-skin.php

// Default email info for new email accounts
// These will only be used if not passed via URL
$epass = 'hispassword'; // email password
$edomain = 'mysite.com'; // email domain (usually same as cPanel domain above)
$equota = 20; // amount of space in megabytes

 

 

The only time it pulls the info is in this line

 

// Create email account
  $f = fopen ("http://$cpuser:$cppass@$cpdomain:2082/frontend/$cpskin/mail/doaddpop.html?email=$euser&domain=$edomain&password=$epass&quota=$equota", "r");
  if (!$f) {
    $msg = 'Cannot create email account. Possible reasons: "fopen" function allowed on your server, PHP is running in SAFE mode';
    break;
  }

  $msg = "<h2>Email account {$euser}@{$edomain} created.</h2>";

 

Thank you for the h elp once again

[cunoodle2]

require_once "config.php";

??

[rebelcreek]

Sometimes I'm just stupid lol

 

Thanks it worked except no .php but I use .inc for protection

[Pikachu2000]

What do you mean you use .inc for protection?

[rebelcreek]

in my config  its .inc instead of .php  then I block it in my .htaccess

[Pikachu2000]

That makes more sense than what it sounded like at first . . .

[rebelcreek]

lol sorry

[rebelcreek]

should I post full script if someone else wants it?