Hacker News new | ask | show | jobs
by FirstHopSystems 5565 days ago
I always use a include for any hashes or passwords in a separate file. When I started learning PHP I exposed my MySQL database password more times then I could keep track of.

It does hammer home the point of staging before deploying. Also the point of making sure you vary your passwords between sites.
1 comments
jasonlotito 5565 days ago
Do not store configuration in code. Store it in files that aren't part of the software. Store this file outside the web root.
link