blondegeek
Baseband Member
- Messages
- 23
Hello there,
I'm cleaning up the code of my website and I've stumbled upon the very tempting php include(); function. I'd love to use it because then obviously I only have to edit one page to affect all pages linked to it, BUT I definitely don't want any of my information that I include (such as global command to link to my SQL database) to be put at any risk. Is there anyway that the include command could present a security risk to my website? It might seem like a n00bish question, but I'd rather be safe than sorry. (Oh, by the way, I'm only using the include command on my own server, not to get stuff from one to the next...just in case that makes any difference.)
And while I'm posting in this specific forum: How safe is FTP or even SFTP? And I don't mean as far as others being able to intersect files, but being able to crack my username and password. Is is safer to use a password protected php operated file browser or is that exactly the same as using FTP?
Thanks!
I'm cleaning up the code of my website and I've stumbled upon the very tempting php include(); function. I'd love to use it because then obviously I only have to edit one page to affect all pages linked to it, BUT I definitely don't want any of my information that I include (such as global command to link to my SQL database) to be put at any risk. Is there anyway that the include command could present a security risk to my website? It might seem like a n00bish question, but I'd rather be safe than sorry. (Oh, by the way, I'm only using the include command on my own server, not to get stuff from one to the next...just in case that makes any difference.)
And while I'm posting in this specific forum: How safe is FTP or even SFTP? And I don't mean as far as others being able to intersect files, but being able to crack my username and password. Is is safer to use a password protected php operated file browser or is that exactly the same as using FTP?
Thanks!