Mainly I'm a flash designer, DataWarehouse Developer, java programmer (now im learnin that). Anyway, i just know a few about PHP
So, Im a member at http://www.flashkit.com I was having a discussion with another member about how to put make scripts using passwords for database access, etc.
My suggestion is to have an additional phpscript, that encrypts decrypts passwords, so, inside you PHP script, you won't write your password like "babybaby", but "HGYUW&)4%$/8799jkjll" (encrypted)....that way if somebody hacks the phpscript, it will still be hard to know the password. Am i right, or am i inventing bullsh.... here?
The other thing is, that i'm pretty sure once i saw a tool that let you download the original PHP scripts from a server, no matter what (so u wouldn't get the output html code, but the original scripts with the original php tags), does that really exist, or am i inventing it??????
liquedus wrote:Ihoss, im pretty sure what you are talking about has to be on the same server, because if that was not the case, then I could run that script on my machine and access anyones php scripts on the www
bezmond wrote:if you want to cut down on idiots out there finding your scripts so easily, use a .php3 extension... I know it's outdated, but I know there are idiots out there who don't try .php3
Users browsing this forum: Yahoo [Bot] and 1 guest