MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 Suggestions and Feedback > inc/config.php
Full Version: inc/config.php
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

Paul H.

2011-11-03, 08:50 PM
It would be great if this code could be added to inc/config.php by default.


if(!defined("IN_MYBB")){die();}

TheGarfield

2011-11-03, 09:18 PM
It's kinda pointless, if a hacker has to use the inc/config.php he will do

define("IN_MYBB", "");
include 'inc/config.php';

It doesn't make MyBB more secure Smile

Paul H.

2011-11-03, 09:21 PM
It's still done on most other pages, including plugins. It might not do a whole lot but IMO it would just be good.

TheGarfield

2011-11-03, 09:50 PM
(2011-11-03, 09:21 PM)Paul H. Wrote: [ -> ]It's still done on most other pages, including plugins. It might not do a whole lot but IMO it would just be good.

I'm just like this when it comes to "hackers" and "hacks", It scares me and I'm always on the Dev site to see what people are reporting as bugs or vulnerabilities... But we should also take care of the other side, the server side, if you have firewalls you lock FTP account after using it, a strong admin panel/cpanel password.... You really don't have to fear that much... Smile

Paul H.

2011-11-03, 09:51 PM
Well you never know, espcecially with the 1.6.4 vulnerability.

Just an idea.

Yumi

2011-11-04, 10:28 AM
People who don't fully understand their suggestion shouldn't be making one.
I'm referring to the OP by the way.
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 Suggestions and Feedback > inc/config.php