On Sun, Dec 14, 2008 at 4:08 AM, Bryan Tong Minh bryan.tongminh@gmail.com wrote:
It would of course be a good idea, but any PHP(f) file that is world readable and has passwords in it is inherently a security leak.
So how do you store your passwords, such that the web server can read them to connect to the database but can't read them to serve the files containing the passwords?