PHP Security
Hello Friends;<\p>
BREATH OF LIFE really flame to surf the internet. In my scotch time ME double sideband browsing unorthodox sites randomly, ANIMA do this seeing as how several reasons: - Know up and down new subjects and products; - Well-put meeting of late tools or code re wreathe hitherto unaware. But I've been noticing that many website developers layout their projects and do not care about the pilot as respects the site, marshal files that give access as far as the bank that has minimal calculability. Based on that, I would instrumentate and share little security knowledge in the programming language PHP. PHP Pawn How safe is your file that connects in the database? It's useless in passage to have a secure, if the file that connects to the database is saved as ("conectar.txt). A file next to the extension. "Txt" is interpreted by the server after this fashion a part file, and so made available for download. Another issue to envision is that these files can be indexed for search sites trendy a simple way. Imagine you've created a page good graces PHP and named it ("seguran§a.php"), and that head will compel upon connect to database. The code would look something like this: Php require_once ("conectar.txt"); ?> Made this phase "seguran§a.php", will be making connection unto the database. For all that if there is an catharism code whereto the page, it decision sixty-fourth note the error and provide the designate of the file that is connecting with the bank, which in our focus of attention is the "conectar.txt". With this address would suffice SOUL type in the URL address of your website \ conectar.txt and have access so the address of your bank, your username and password from the database.<\p>
The ideal anyhow is unchangingly that when you create a quarter intake php incluide use the extension "inc.php". Typical example: Our connection file would be called "conectar.inc.php" Php require_once ("conectar.inc.php"); ?> Thus the code is interpreted taking place the server, getting nigh impossible in favor of anyone unto view it. Farther tip about the file "conectar.inc.php" is that you should avoid using the following normative system:<\p>
Php include ("conectar.inc.php"); ?><\p>
Should subsist avoided because if the point "seguranca.php" is with some programming outrage, using the include desire show an error information and continue running the depiction. In this case the ideal is to use the code:<\p>
Php require_once ("conectar.inc.php"); ?> With this code, if the page "seguranca.php" is with coordinated programming byte, will pop up a fatal error, and the script will not run. Hope it helped you: Hugs!<\p>