In article <20030913005411.2b5c2365.ianWINDOZEdigiserv.net >, Ian.H
[dS]'s output was...
> Say for example, your web tree is similar to:
>
>
> /bob
> /bob/htdocs
> /bob/htdocs/index.php
>
>
> etc. Store something like 'db_config.php' as:
>
>
> /bob/db_config.php
>
>
> This way, it's not web accessible, so matters not if the PHP parsing
> falls over. Simply use a require() call to "import" the info:
>
>
Or, if you have a webhost who don't give you any space which can't be
seen by web users, create .htaccess and .htpasswd files to prevent people
from seeing the 'db_config.php' file.

See [url]http://httpd.apache.org/docs/howto/auth.html[/url] for more info.