Re: include files, ".php" or ".inc" ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Richard Davey wrote: 
Hello Perry,

Sunday, November 21, 2004, 8:02:48 PM, you wrote:

PJ> What it the purpose of the ".inc" file then?

Security - on a properly configured web server a .inc file will never
actually try and compile/execute itself. Whereas a .php one always
will.

Yes, .inc files will show up as they are - php source, db username/password etc. So it's even less secure unless you forbid serving them:

<Files "*.inc">
Order Allow,Deny
Deny from all
</Files>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux