hello all,
I am planning to change the database password on my hosting sql but I cant find the option to change that in the admin cp...
any help would be appreciated.
tks!
Thanks! Is there any way to protect that password from being in plain ascii? Tks!
(2009-06-28, 12:18 AM)rosado Wrote: [ -> ]Thanks! Is there any way to protect that password from being in plain ascii? Tks!
1) Use secure FTP if your host allows SSH or SFTP.
2) config.php cannot be accessed by a browser, so it should be secure unless your cPanel/FTP password gets hacked.
Is there another way for hackers to read your config.php?
If "yes", then how is any popular, open-source PHP script safe?
<"Dumb" question edited>
also...
If a hacker (on shared hosting) knows your cPanel userID (so then they know the filepath) can they write a simple script to read your config.php?
EDIT: Shared hosting blocks access to other accounts files (duh!)
and again...
If "yes", then how is any popular, open-source PHP script safe?
</"Dumb" question edited>
Thanks for the clarifications!
(2009-06-28, 05:40 AM)rosado Wrote: [ -> ]Thanks for the clarifications!
Sure
I used to worry about the same thing, but...
'config' files are (must be) reasonably secure, or virtually every single website would be wide open to attack.