Hi and thanks to everyone for reading my question.
I worked on the PHP web program for some time and wondered what measures should be taken to protect the source before putting it on a live server. The source is not distributed, it is accessed through the website (users register on the website to use it).
First, I would like to protect the php source files from searching and loading. I do not use the framework, only php and all the files are in the home directory as index.php. I read and it seems that robots.txt is not very effective for hiding. I came across some reports about .htaccess recommendations, but I often thought it was protecting files in a directory with a password, so I'm not sure if there is a way to make it htaccess suitable for a web application.
Secondly, I would like to protect the source files if someone gets access to them (either finds them, or loads them, or the sys administrator, who has ready access to the server). I was thinking about encrypting the source with something like ioncube. My host also has GnuPG (which I am not familiar with, any thoughts on this compared to ioncube?]
I am not familiar with source protection, so any ideas would be nice and, of course, thank you very much :)
Chris source
share