Is it Secret? Is it Safe?
by Jeff Starr on Wednesday, March 17, 2010
Whenever I find myself working with PHP or messing around with server settings, I nearly always create a phpinfo.php file and place it in the root directory of whatever domain I happen to be working on. These types of informational files employ PHP’s handy phpinfo() function to display a concise summary of all of your server’s variables, which may then be referenced for debugging purposes, bragging rights, and so on.
While this sort of thing is normally okay, I frequently forget to remove the file and just leave it sitting there for the entire world to look at. This of course is a big “no-no” for site security, because the phpinfo.php file contains a hefty amount of information about my server, including stuff like:
- The web server version
- The IP address of the host
- The version of the operating system
- The root directory of the web server
- Configuration information about the remote PHP installation
- The username of the user who installed php and if they are a SUDO user
The updated book is looking better than ever! A little over 3.5 months after
Many bloggers, designers, and developers take advantage of
CSS3 can do some pretty amazing stuff:
I have a free ![[ Photo: Fanning color page edges ]](http://perishablepress.com/press/wp-content/images/2009/dig-wp-print/digwp-print_03.jpg)
Focused on clean code and quality content, Perishable Press is the online home of Jeff Starr, author, artist, designer, developer, and all-around swell guy. 





Social Media
Some more than others, here are some of my favorites..