[thelist] Hide entire directory from search engines?

Hassan Schroeder hassan.schroeder at gmail.com
Sun Mar 30 11:23:50 CDT 2008


On Sun, Mar 30, 2008 at 8:50 AM, Stephen Rider <evolt_org at striderweb.com> wrote:

>  However, if the includes are in PHP and properly coded, a hacker
>  should only see the _results_ of the code and not the code itself, am
>  I correct?

In theory, yes, assuming the output of the include doesn't expose
anything when run outside the context of an enclosing page.

However, suppose something causes the PHP interpreter to choke
and deliver the file as plain text? Perhaps unlikely, but stuff happens,
especially in environments governed by configuration files edited by
human beings. More especially human beings using vi  :-)

-- 
Hassan Schroeder ------------------------ hassan.schroeder at gmail.com



More information about the thelist mailing list