> Name them .inc.php so that they cannot be opened by a webbrowser, thus > giving more information to a potential attacker.
As always, there's another side to that augment. If you give them the .php suffix, then they can be ran via a browser "as-is" , which may not be something you want. Need to consider if running your includes will do any harm.
tedd -- ------------------------------------------------------------------------------------ http://sperling.com http://ancientstones.com http://earthstones.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
