Admin Notes

[Prick]

Now it works

Thanks +rep

Just one little thing, whats the best permissions to set?
I don't want anyone to be able to read the .txt file by going to www.(site).net/admin/adminnotes.txt
atm anyone can go to that link and see the notes, how can I stop people form seeing them?

[Prick]

Ugh sorry for double post modzzz

Yeah is 750 permissions on each file enough?
I went on a proxy and it said forbidden so I guess it is?

[Navicat]

You don't have to fread or open it for that matter. file_get_contents should do the trick.

http://www.php.net/file_get_contents

Code:

file_get_contents — Reads entire file into a string
string file_get_contents     ( string $filename    [, int $flags    [, resource $context    [, int $offset    [, int $maxlen   ]]]] )

[Protege]

To protect it, basically you can just add a quick "Validation" of who it is, just add another input called

HTML Code:

<input type="password" name="pw">

into the admin.php and then into the send.php, before everything else add

PHP Code:

$password = "Yourpwhere";
if(isset($_POST["pw"])) {
    if(($_POST["pw"] == "$password")) {
        {
        # Rest of the code here... 


then add this at the end of the code

PHP Code:

} } 


This is a poor way to secure a page... Unless you build a member system with encrypts and session checking.