hiding the conf.ini

Archived from the Xataface Users forum.

Chris — Thu Jan 13, 2011 3:13 am

In other systems I’ve used the database login info is in a php file that has a check at the top making sure the file is being included by another file. This stops the Internet from seeing the contents of the file.

I know this is rather basic but I’ve not been able to figure it out.
How do I hide the conf.ini file, if it must be in the same directory as the index.php file?

---

ururk — Thu Jan 13, 2011 9:29 am

You can use an .htaccess file to block access to the ini files:

Code: Select all

<FilesMatch "\.(ini)$"> Order allow,deny Deny from all </FilesMatch>