php - Need to Stop Bots from Killing my Webserver - Webmasters Stack . . . All it will potentially do is prevent legitimate requests (from index php or mobile php) from calling the script more than once In order to prevent a bot from accessing your script you should only allow access if a session variable (or cookie) is actually set
scan - How can an attacker identify if a website is using PHP? How . . . The way PHP works is that the HTTP server receives the HTTP request, identifies that it's meant to be PHP and relays the request to the PHP module This could either be a module built into the web server or be a dedicated "PHP server"
Should I Include PHP code in HTML or HTML in PHP? Your HTML inside PHP is probably not the best, because it makes writing structured HTML very hard I recommend using an actual template engine, but others say "PHP is already a template engine" and (presumably) use variations of PHP inside HTML