I use a config.php for storing mysql connection data (including a pass). But others users (on that server) can simply include my config.php fille in their filles and echo vars. How can i protect my pass for mySQL?
That depends entirely on how well your ISP has setup his security.
Most likely you're using a virtual server on one big webserver, which offers very very little security.
read this: http://www.hvt-automation.nl/yapf/faq.php?cmd=viewitem&itemid=108
always plugging that yapf site of yours you!
:o)
yeah, you are right I will read that article...
Hey, you can't have enough of a good thing :-)
A forum, a FAQ, what else do you need?
