How to hide a custom php.ini file?
The php.ini file is an important configuration file of your PHP server. The configuration file is normally not editable to people who open a shared hosting account. However, you can normally see its content with this simple code:
phpinfo();
?>
The settings in php.ini file are very crucial – many website hacks are done by digging loop holes in this file. In case you’re using a custom php.ini file, it’s advised to protect it from being accessed by public.
How you can hide your php.ini file?
To hide your files from the public, all you need to do is to add a simple line in your .htaccess file:
deny from all
Or alternatively, you can redirect the people who’re searching for your php.ini files to 404 error:
RedirectMatch 404 .*php\.ini
Feeling safer by now? You bet!
