Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.
Mordred wrote:You can just hardcode them in your PHP source.
Do you think it will be good for install script after have installed the system database will execute another script that will write them in a PHP file as series of array?
I think this will maintain generic (no hard coded values) yet maintain the concept. Is there a better way to archieve this?