What else except the login and password should be hidden when uploading the site in public (github, for example)?
Hello. What's even better is to hide in the project that I publish in open access? Except the login and password to the database and the mail, of course. If you want to hide encryption (ssl / tls /...), and mailer (I have smtp) for mail? Port? hash_method to create hashes?
The keys and do all the settings (usernames/passwords/addresses/ports) of remote services, various certificates, email addresses, mailing.
Hashing method you can not hide if it is not quite easy (md5($password)) and harrouni using some kind of "salt" that should not be included.