I am reasonably new to the use of php and mysql and during my self teaching I recall reading about using a seperate file to store my mysql connection script and then use the require command to include it in all my other necessary pages. This then not only makes updating easier but keeps the information secure.
But!, where should I save this file with my security settings to prevent unauthorised access? Is there somewhere that I should store it to prevent hackers from accessing it or is it secure enough just to have a .php extension?
