Security problem

Anon

Hello,

I'm trying to write a php application using a database, but I have a security problem.

In my .php3, I connect to my database using a login/password. My problem is the following: if the php interpreter is not installed on the server, anyone accessing the .php3 will be able to download it, thus getting access to the login/password of the database.

I wonder how to avoid that.

Thank you.

Claude

Anon

use an include which is not under DocumentRoot to store your connection information. Even if you cannot do it this way (home == document root) you should not be too concerned if your security is setup correctly on your database.