[thelist] Hide entire directory from search engines?
Hassan Schroeder
hassan.schroeder at gmail.com
Sun Mar 30 11:23:50 CDT 2008
On Sun, Mar 30, 2008 at 8:50 AM, Stephen Rider <evolt_org at striderweb.com> wrote:
> However, if the includes are in PHP and properly coded, a hacker
> should only see the _results_ of the code and not the code itself, am
> I correct?
In theory, yes, assuming the output of the include doesn't expose
anything when run outside the context of an enclosing page.
However, suppose something causes the PHP interpreter to choke
and deliver the file as plain text? Perhaps unlikely, but stuff happens,
especially in environments governed by configuration files edited by
human beings. More especially human beings using vi :-)
--
Hassan Schroeder ------------------------ hassan.schroeder at gmail.com
More information about the thelist
mailing list