Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.
Config.php 2.1.6
DenisS
✭✭
Because of problems with spammers i been updating my hosting eg. I.P's Spam protection, i changed my hosting password
Carried on working on my old sites the logged into my new 2.1.6 site, I could not login got the "something when wrong " error message as had not altered anything except my hosting password, so looked at the config.php the password is in normal text not encrypted at all, is this normal? I changed the password and all is ok now.
// Database
$Configuration['Database']['Name'] = 'h*****ha_Isaanlife';
$Configuration['Database']['Host'] = 'localhost';
$Configuration['Database']['User'] = 'h*****ha';
$Configuration['Database']['Password'] = 'MYPASSWORD';
$Configuration['Debug'] = FALSE;
0
Comments
Your DB connection info is stored in plaintext on the server as there is no practical way to store it more securely.
Make sure that db user can only affect your forum db.
Search first
Check out the Documentation! We are always looking for new content and pull requests.
Click on insightful, awesome, and funny reactions to thank community volunteers for their valuable posts.