homepage Welcome to WebmasterWorld Guest from 54.227.41.242
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Pubcon Platinum Sponsor 2014
Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
Forum Library, Charter, Moderators: coopster & jatar k

PHP Server Side Scripting Forum

    
just learning PHP
security and include methods
astounded

10+ Year Member



 
Msg#: 688 posted 10:03 pm on Mar 17, 2003 (gmt 0)

I'm just learning and experimenting with PHP and I have two basic questions:

1. Are there any security concerns I should be aware of. I'm playing around with php scripts that show the current date, current time, and current users online (doesn't use database), an "email this link to someone" script, and a formmail script. I don't want to open anything up to hacking. And I haven't a clue whether any of this makes my site more vulnerable. Does it?

2. My main area of specilization is copy writing and SEO related to that. In using the PHP and playing with it, it seems that the best way to keep a lot of code off the main html pages is to use what I think are called includes such as:
<? include"http://mydomain.com/myfile.php";?>
This points to the php script and keeps all the code off the main pages so it is easier for bots to spider the copy on those main pages. Is this a reasonable way to do this? Am I on the right track?

thanks from a new learner...

 

mapostel

10+ Year Member



 
Msg#: 688 posted 10:33 pm on Mar 17, 2003 (gmt 0)

Hi,

2. Your reason for using includes is rather pointless, as a) a user (and also a bot) never sees php code and
b) any include files are included at the time of execution. So even if code was visible it would be visible once the script is executed and output served.
The point is that the output of the include files will be included in the server's output.

However, includes are good practice if you want to keep the code clean for yourself or in order to minimise repetition of common code, for example an include with your own functions or an include for header tags etc.

Hope this helps,

M.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved