How to move our web into server?

Anon

Dear All,

I write a webpage in PHP in my own computer with Apache Server under win98 system. When I call the database, one of the statement "mysql_pconnect("simon","root","") has to be used since my computer is named as "simon". However, if I publish my webpage to the real website, do I need to change all these parameters for every webpage when connect with the database ? I think that this gives much troubles and conveniences. Please give me some convenient methods to write a webpage in PHP before publish into the real website? thanks

Simon

Anon

Hi simon,

I'd suggest to move your database user
name and password into a protected configuration file and read these parameters into global php variables when you need them (make sure this configuration file is not
reachable from your web-site).

It is usually not a good idea to embed passwords in web files directly because of bugs and back-doors that exist in many web servers (including commercial ones like IIS).

For example - The IIS had a feature that allowed malicious users to retrieve the unprocessed .asp file and purview its contents (including any passwords) directly by appending a special "::$DATA" suffix to the .asp URL.

Hope this helps