So after I found out about the fact you could Include a remote PHP script, I set up my local host and tried just that on my own server.
Annoyingly after tweaking a few PHP variables on the local end I was able to remotely include my PHP scripts, and reveal an amount of information that could compromise my security.
So I would like to know how I can stop my scripts being included from a remote address.
To clear things up, I need to be able to include my scripts locally (the same server) but deny access from a remote server.
I hope my question is clear enough, thanks.
Ooops, yes - you're right.
I was only able to list all of the server variables (including cookies), but not actually any variables defined in the script.
Phew!
But when I use the include (local to remote) I am able to get a repose showing whatever has been echoed by the script.
Is there any way to stop that?
Annoyingly after tweaking a few PHP variables on the local end I was able to remotely include my PHP scripts, and reveal an amount of information that could compromise my security.
So I would like to know how I can stop my scripts being included from a remote address.
To clear things up, I need to be able to include my scripts locally (the same server) but deny access from a remote server.
I hope my question is clear enough, thanks.
Ooops, yes - you're right.
I was only able to list all of the server variables (including cookies), but not actually any variables defined in the script.
Phew!
But when I use the include (local to remote) I am able to get a repose showing whatever has been echoed by the script.
Is there any way to stop that?