How do I make my database connection secure?

Question

I\'m currently working on a website for my church\'s college group, and am started to get a little worried about the security of what I\'m writing. For instance, I use this

Answer 1

You should put your database credentials in a file outside of the document root, so if something messes up and your PHP gets shown to users un-parsed, no-one will be able to see your password.

Have a look at this article on the subject this article on the subject:

The solution is simple. Place all sensitive data outside of your web server’s document root. Many experts now advocate placing most, if not all, of your php code outside of your web server’s document root. Since PHP is not limited by the same restrictions are you web server, you can make a directory on the same level as your document root and place all of your sensitive data and code there.