What you might want to try doing is to create a "connect.php" file that exists outside of your doc root that has the variables with your information and simply include this file when you need to connect to your DB. Now, this won't change the root problem - if someone's able to snoop your transmission then they can pull the info you're sending from the web server to the SQL server... But you'll run into this unless *the communication* between the two machines are encrpyted. This means that having specific files be encrpyted or not is somewhat pointless in this situation. -M > Sorry for the silly question, you are probably right. > > Would it be possible to encrypt the whole file, so that the > password could not be read? > -- > symbulos partners > -.- > symbulos - ethical services for your organisation > http://www.symbulos.com > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
