The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
|||
|
|||
put real config file to diffirent place
Hello
I dont have zend encoder so can I put my config.php to other place that hacker can not read the file . For ex the config.php in includes folder will like this: <?php include (../../config.conf) ?> the config.conf will put on to folder that only root can read it. Sorry I am not a coder but that's my idea ? is it able ?? thanks T |
#2
|
|||
|
|||
You can move the file out of the webroot, but the webserver process must have read permission. As it will need read permission a hacker who can read the ./includes/config.php will immediatly see the real path and can also read that.
Best solution: Make sure hackers can not get file access. |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|