> How hard is it for someone to somehow read the source code out of my php > files on my isp hosted website. They use linux & apache & php 4.0.6. Pretty hard, assuming your code is not output at any point. > I ask because in my logfile it seems someone accessed a uniquely named > not-guessable folder in my web root. It is mentioned in my source code. > I use imagecreatefromjpeg on files in this directory. How can someone > see my folders if not by viewing my source code? Does that folder name ever get output to the browser? Even in <IMG SRC=''>? If PHP creates the file then retrieves the image itself via HTTP, that would explain the hit... Jason -- Jason Murray [EMAIL PROTECTED] Web Developer, Melbourne IT "Work now, freak later!" -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
