Im building an ecommerce website. The hosting company said that its insecure because Im using an Access database. They said I could place it above the root directory so its not accessible by people. How would I do this? They also said I was using non-compliant code because of the way I was referencing the database. My line is:
Please tell me you are not storing credit card information in an unencrypted access database sitting in a http accessible folder on a shared web server. If so, managing connection strings is the least of your problems.