Just out of curiosity went to a few sites that use PHP, and tried going to http://their.server/phpinfo.php
The number of people who actually have this file is astounding! I’m sure everybody puts it up for the same reasons – to check their installation, but I wonder if there’s any information on there that’s “handy for hackers” that could really do with not being there?
A quick scan doesn’t reveal much, although I imagine having the path of the users’ home directories might be vaguely useful. If you can think of anything do let me know, I’d be quite interested to find out!
BTW a search on Google throws up a huge number of results!