I have server-computer where are more than just one user. I'd like to use it for PHP and Postgresql development. Now I have following problem: I have php-files in my public_html directory and I'd like to prevent other users from seeing php-sources, because they can see database passwords from those files. If I deny access (chmod to 700) to public_html directory, then nobody will be able to read my pages from internet. How can I make it only deny computer-users to see php-sources and prevent them from entering my public_html-directory? I have set ftp chroot to home directory, but they can still see those files by using ssh.

Put all of the password in one php file and have the other php files include that file. Change the owner of the file to apache and group apache. Then change that one files perms to 700.

i never think of that kind of question, it's good for my future reference, thks!