Page 1 of 1

Passwords in clear text in configuration.php

Posted: Tue Dec 25, 2007 2:40 am
by iceangel89
i see my passwords in clear text in configuration.php, isn't that bad? although the configuration.php isn't supposed to be readable by the public, but i think i am quite sure many including me after installing joomla will forget to CHMOD back, and whats a good value for that file (configuration.php)?

Re: Passwords in clear text in configuration.php

Posted: Tue Dec 25, 2007 4:58 pm
by pe7er
It is not bad that the MySQL database password is in clear text in your configuration.php
If it was not (e.g. MD5 encrypted) then Joomla would not be able to make a connection to the database, and your site would not work.

644 is a good value for configuration.php

Background info: FAQ: Joomla! Permissions Overview
http://forum.joomla.org/index.php/topic,121470.0.html