[KLUG Members] PHP and new scam from Permissioned Media
Adam Williams
members@kalamazoolinux.org
31 Oct 2002 05:23:02 -0500
>Putting together a php script is not any different from writing a shell
>script or [insert programming language here].
This depends more on the problem then the programming language. I've
seen some immense shell scripts, and I once played with an SQL
interpreter written in Bash! Eiek!
>I learned php by example. If I got stuck on something I just checked php.net.
>www.sourceforge.net
>www.planetsourcecode.com
>www.php.net
>I prefer not to use any "inc" extensions for security purposes, especially if
>I have database username and passwords in the file---I use "inc.php"
>instead.
It is possible to include from outside the webroot. I usually make a
/var/www/include and put class files there. So if the web server config
gets screwed and people go into view-source mode, all they see is
reference to objects/variables they don't have the definition of.