[development] let's cleanup /misc
Darrel O'Pry
dopry at thing.net
Tue Jan 10 16:41:19 UTC 2006
On Tue, 2006-01-10 at 14:49 +0100, Bèr Kessels wrote:
> Op dinsdag 10 januari 2006 14:20, schreef Adrian Rossouw:
> > The OSX way is far far simpler, and much much cleaner.
>
> But much unsafer (not speaking of OSX vs Unix safety).
> We discussed before, that PHP files should really live in a non-web-acessible
> place.
-- I kind of have to disagree with this... php files containing
sensitive data should not be in a web accessible
directory(settings.php)... If you're worried about people uploading
randscript.php or rewriting your .php files I think you have other
things you need to address like permissions.
> The biggest downside of that, indeed, is that the web-accessible files can no
> longer live in the module directories.
>
> Bèr
More information about the development
mailing list