I've been told that it is unsecure to make database connections inside a PHP includes. For example If I have a login page and add an "include('process.php')" at the top of the page that has a database connection, is that unsecure?
6条回答 默认 最新
donglan8999 2011-08-16 16:59关注For example If I have a login page and add an "include('process.php')" at the top of the page that has a database connection, is that unsecure?
No.
Maybe the person who told you this was talking about something else - like including a file using a dynamic value coming from a GET parameter, or using remote
http://includes, or as @AlienWebguy mentions, having the password include inside the web root. But using includes in itself is not insecure.本回答被题主选为最佳回答 , 对您是否有帮助呢?解决 无用评论 打赏举报
分享