This may seem like a stupid question but I've only just started PHP so play nice
I've just finished a tutorial that uses an MVC style approach to build a simple login page that redirects the user to a Member's Area. It works brilliantly.
Question: What is to stop someone downloading all your PHP files straight off the webserver, opening them in notepad and viewing code like the following:
Thus gaining access to sensitive information.
I can see how content in the MySQL database is secure but what about content in the actual PHP files?
Cheers
I've just finished a tutorial that uses an MVC style approach to build a simple login page that redirects the user to a Member's Area. It works brilliantly.
Question: What is to stop someone downloading all your PHP files straight off the webserver, opening them in notepad and viewing code like the following:
PHP:
// database settings
$server = 'localhost';
$user = 'root';
$pass = 'starbucks';
$db = 'pop_login';
// connect to the database
$Database = new mysqli($server, $user, $pass, $db);
// error reporting
mysqli_report(MYSQLI_REPORT_ERROR);
Thus gaining access to sensitive information.
I can see how content in the MySQL database is secure but what about content in the actual PHP files?
Cheers