the_oliver Posted December 3, 2006 Share Posted December 3, 2006 Hi. At the moment a site im designing revolvers entirly around a connecton to a postgresql database. All the usernames and passwords etc are stored in the database etc. The connection details for this are stored in a normal .php file as a variable. Is there a more secure way that i can do that? It seems to be that it would be fairly easy for someone to obtain the file, reed the password and get access to all the files, with out being a regested user?Thanks Quote Link to comment Share on other sites More sharing options...
ataria Posted December 3, 2006 Share Posted December 3, 2006 You can't read a PHP file with view-source, if that's what you mean. Quote Link to comment Share on other sites More sharing options...
the_oliver Posted December 3, 2006 Author Share Posted December 3, 2006 sure, but it would not be to chalanging for some one to view the origional file. its that bit that im trying to avoid.Thanks Quote Link to comment Share on other sites More sharing options...
ataria Posted December 3, 2006 Share Posted December 3, 2006 How would they do that?they would need access. Quote Link to comment Share on other sites More sharing options...
the_oliver Posted December 3, 2006 Author Share Posted December 3, 2006 if the files are owned for apache for example then they have access! Espesialy if the files in the web directory. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.