Safe Password Location

Where do I place php include files containing db_conn passwords to mysql so they are not exposed to the web?
For example in US WAMP I use:
include “Z:\htpasswd\www\db.inc”;
$db_conn = mysql_connect (“$my_host”, “$my_user”, “$my_password”)

Hi,

I suggest to use .htaccess to protect this file. You can find more ideas at http://www.tek-tips.com/viewthread.cfm?qid=42615