Is this the proper way to connect to MySQL??

drock

I am relatively new to PHP and MySQL. My domain host has only setup one login for me to use to access our MySQL database. I have hardcoded that login and password in all of our PHP scripts (using an include file) which just seems "wrong". Is this the correct, safe way to connect to our MySQL db? Is it true that the contects of the PHP file with our login/pass cannot be view by the world? Just looking for reassurance . . .

Thanks,
David Rock

[deleted]

You should make sure that the include file that contains your username and password is outside the web directory. If it is in a folder that can be accessed from the web, php could fail and then the username and password could be seen. Just stick it outside the web directory and you will be fine....

theeper

also, make sure you use a php file extension for your include files, not .txt or something.