I've figured out a fairly secure program structure. Here's one option
(I'm sure there's as many ways to accomplish similar security as there
are people on this list):
First, a little info about the environment. It's a Linux OS running
Apache Web Server. Multi-user environment providing
If this file has a .php extension remote users will not have
access to
the variables because the file is parsed by php and they
never see the
actual file contents when requesting the document via the
web. If you
are concerned with users on localhost having access to the
file,
I've been working on something like this since about September/October.
It's not too hard, but it did take more coding than I thought it would.
Now, there's a couple of ways you could do this. I chose the cheap (in
terms of the number of DB tables) way out.
The way I have it set up is this.