Sql

[DevilDog#1]

Covering it up with garbage is more practical. Naming it wierd makes it hard when troubleshooting

[SilentTrigger]

If its mysql, then line breaks will be "recorded" into the db automaticly if you use a <textarea>

[Scott]

You cannot simply include a file from another website and be able to get the variables of it... If you could, every public script ever released could be hacked easily.

[JonM]

i was about to say basically every script would die. PHP wouldn't be used if u could hack it that easy

[IcIshoot]

I can confirm what panther said

I just tried it

When you include the remote file, that file gets processed on the remote server, then just the results of that processing are returned.

Same for trying to open up the file using fopen();


But for added security, you could throw some thing like this at the begging of your script (must be put before any out put is done):

PHP Code:

<?php
if(stristr($_SERVER['SCRIPT_NAME'], "config.php")) {
    Header("Location: index.php");
    die();
}

I got it from my config file for php-nuke. But almost all of php-nuke's script files have some thing like that. It forces people to the index.php file


IcI

[SilentTrigger]

HOw did this go from line breaks in mysql to hacking? :O

[atholon]

I am just curious. I don't want someone to hack my site. I bet it would be pretty easy but...yeah. Anyway thanks for the info.

[DevilDog#1]

Quote:

Originally posted by atholon
I am just curious. I don't want someone to hack my site. I bet it would be pretty easy but...yeah. Anyway thanks for the info.

When developing a secure site. Try not to discuss the intimate details. Usually helps

[atholon]

That is why I am not posting all of my code

NTM the code will be changing once I get everthing workin'

[Scott]

if you post your code here, and there is a flaw and I see it, you'll know about it .. I don't think you have to much to worry about.

If you don't learn to code secure then your code is worthless... I must say my past code was not very secure, but i've learned alot and now like to help people

[atholon]

LOL

I trust you dude. Right now someone is helping me spruce it up and I will show yah it when it is done. I need to figure out how to do the session bit.