Hello,
Im new to PHP.
My Db is up and running though I feel very exposed and think my data is not very secure - why?
because
a) I can only access the db using a password and usernam which I have to hardcode into the php script? - is this right, surely someone could look at the php files on the site and read the code?.
b) My php access username and pwd are the same as to the admin for my entire site. It doesnt seem right. I didnt create the username/pwd the database did in its auto creation.
c) All the .PHP / HTML files are open for access - surely someone could copy them and see the pwd and code?
Am I missing something here?
thanks
Im new to PHP.
My Db is up and running though I feel very exposed and think my data is not very secure - why?
because
a) I can only access the db using a password and usernam which I have to hardcode into the php script? - is this right, surely someone could look at the php files on the site and read the code?.
b) My php access username and pwd are the same as to the admin for my entire site. It doesnt seem right. I didnt create the username/pwd the database did in its auto creation.
c) All the .PHP / HTML files are open for access - surely someone could copy them and see the pwd and code?
Am I missing something here?
thanks