Ed
A good practice is to have your configuration files out of the webserver
document directory. You should set the include_path in the php.ini file
to include the directory where your configuration file is located at.
You can also change the permission to 600 and change the owner to
whatever user/group apache is running under.
--
Ray
On Wed, 2003-03-26 at 09:46, Edmond Baroud wrote:
Hi all,
I've been using php in a local Unix environement where I never had to worry about
read permissions of users/groups on my db connection's config file which contains
the user and password. I'm trying to think of a possible solution for my connection
properties in a shared/hosting environement where users/groups *might* have read
access to my files.
Any suggestions would be appreciated.
Ed.
--
Edmond Baroud
Senior UNIX sysadmin mailto:[EMAIL PROTECTED]
Fingerprint 140F 5FD5 3FDD 45D9 226D 9602 8C3D EAFB 4E19 BEF9
UNIX is very user friendly, it's just picky about who its friends are.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
