1. Avoid placing your file in connection with the database in the same directory on your web pages or the directory used for includes. The best thing to do is put it in some directory off the root of the site.
2. Turn on the web server configuration that allows the listing of files contained in directories that do not have an index.php.
3. Avoid using the name includes the directory where you put that file type.
4. In the directory you use to put your include files, always put an index.htm and an index.php file blank. This will prevent the server list the contents of this directory is the case with the setting enabled for listings.
5. Never use the. Inc for your include files. This can cause the web server shows important data contained in these files. Always use the extension. Php. That way the file will always be processed before being delivered to users.
