Another option is to deter the 'hackers' in the first place by:
1) disguising the fact you use scripting by renaming your .php files to .htm and adding the following to your .htaccess
Quote:
|
AddType application/x-httpd-php .htm
|
Using .htm istead of .html will let you have static files without putting undue load on the server.
2) hiding all file extensions using mod_rewrite so that they appear to be directories.
I do that at my TopSites list at
topsites.allyoursex.com
Option 1 would be the easiest for most, I expect, but I mentioned option 2 as an alternative for those in position to use it.