2011-11-03, 08:50 PM
2011-11-03, 09:18 PM
It's kinda pointless, if a hacker has to use the inc/config.php he will do
define("IN_MYBB", "");
include 'inc/config.php';
It doesn't make MyBB more secure
define("IN_MYBB", "");
include 'inc/config.php';
It doesn't make MyBB more secure
2011-11-03, 09:21 PM
It's still done on most other pages, including plugins. It might not do a whole lot but IMO it would just be good.
2011-11-03, 09:50 PM
(2011-11-03, 09:21 PM)Paul H. Wrote: [ -> ]It's still done on most other pages, including plugins. It might not do a whole lot but IMO it would just be good.
I'm just like this when it comes to "hackers" and "hacks", It scares me and I'm always on the Dev site to see what people are reporting as bugs or vulnerabilities... But we should also take care of the other side, the server side, if you have firewalls you lock FTP account after using it, a strong admin panel/cpanel password.... You really don't have to fear that much...
2011-11-03, 09:51 PM
Well you never know, espcecially with the 1.6.4 vulnerability.
Just an idea.
Just an idea.
2011-11-04, 10:28 AM
People who don't fully understand their suggestion shouldn't be making one.
I'm referring to the OP by the way.
I'm referring to the OP by the way.