Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

Config.php 2.1.6

DenisSDenisS My brain hurts Buriram ✭✭
edited January 2015 in Vanilla 2.0 - 2.8

Because of problems with spammers i been updating my hosting eg. I.P's Spam protection, i changed my hosting password

Carried on working on my old sites the logged into my new 2.1.6 site, I could not login got the "something when wrong " error message as had not altered anything except my hosting password, so looked at the config.php the password is in normal text not encrypted at all, is this normal? I changed the password and all is ok now.

// Database

$Configuration['Database']['Name'] = 'h*****ha_Isaanlife';

$Configuration['Database']['Host'] = 'localhost';

$Configuration['Database']['User'] = 'h*****ha';

$Configuration['Database']['Password'] = 'MYPASSWORD';

$Configuration['Debug'] = FALSE;

Comments

  • hgtonighthgtonight ∞ · New Moderator

    Your DB connection info is stored in plaintext on the server as there is no practical way to store it more securely.

    Make sure that db user can only affect your forum db.

    Search first

    Check out the Documentation! We are always looking for new content and pull requests.

    Click on insightful, awesome, and funny reactions to thank community volunteers for their valuable posts.

Sign In or Register to comment.