Xataface Forums

In other systems I've used the database login info is in a php file that has a check at the top making sure the file is being included by another file. This stops the Internet from seeing the contents of the file.

I know this is rather basic but I've not been able to figure it out.
How do I hide the conf.ini file, if it must be in the same directory as the index.php file?

You can use an .htaccess file to block access to the ini files:

Code: Select all

<FilesMatch "\.(ini)$">
Order allow,deny
Deny from all
</FilesMatch>