Ed A good practice is to have your configuration files out of the webserver document directory. You should set the include_path in the php.ini file to include the directory where your configuration file is located at. You can also change the permission to 600 and change the owner to whatever user/group apache is running under.
-- Ray On Wed, 2003-03-26 at 09:46, Edmond Baroud wrote: > Hi all, > > I've been using php in a local Unix environement where I never had to worry about > read permissions of users/groups on my db connection's config file which contains > the user and password. I'm trying to think of a possible solution for my connection > properties in a shared/hosting environement where users/groups *might* have read > access to my files. > > Any suggestions would be appreciated. > > Ed. > > -- > Edmond Baroud > Senior UNIX sysadmin mailto:[EMAIL PROTECTED] > Fingerprint 140F 5FD5 3FDD 45D9 226D 9602 8C3D EAFB 4E19 BEF9 > "UNIX is very user friendly, it's just picky about who its friends are." > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
