On Tuesday 23 October 2001 11:20, Matt Williams wrote: > Move it outside the document root > > or put a .htaccess file inside the dir to deny access. This will still > allow system access but will prevent other fopen.
Either solution still allows anyone with shell access to the machine to read your password. Not an ideal solution for shared hosting environments, but if you're running your own server, it's a great solution. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
