Page 1 of 1

hosting security - .inc files...

Posted: Mon Feb 02, 2004 12:00 am
by Subliminal
Hey,

I was not sure where to post this so i figured why not here? I have a site that is going live in a couple of days and I am concerned about my include files. (you know that special one containg sensitive information) I have made it a .php file cause I figure it is at least parsed that way. I should also put it in a directory that is not accessable via the web however it is not my webserver therefore I can't. Am I taking a large risk by doing so? Those apps that pull everything from a website.. can those grab my php files as well???

Thanks for your input..

Posted: Mon Feb 02, 2004 4:51 am
by twigletmac
No, unless they can get access to your server via FTP then they won't be able to get those files, only the generated HTML.

Mac