thewooleymammoth Posted November 12, 2008 Share Posted November 12, 2008 Would it be a major securiity flaw to store usernames and passwords as files in a folder that would only be accessible to the server for executing commands? Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/ Share on other sites More sharing options...
DarkWater Posted November 12, 2008 Share Posted November 12, 2008 Why would you do that when using a database is much easier? Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/#findComment-688217 Share on other sites More sharing options...
premiso Posted November 12, 2008 Share Posted November 12, 2008 Potentially it could. If on a shared server an exploit could gain access to that folder. I would go with DarkWater and store them in a database, much more secure and easier to manipulate/retrieve. To answer the question, yes it would be a security flaw, just due to the nature of a server. Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/#findComment-688218 Share on other sites More sharing options...
thewooleymammoth Posted November 12, 2008 Author Share Posted November 12, 2008 k thanks i guess ill go with the mysql info, and just to answer your question, i just dont like using mysql because of the different syntax i have to remember and creating the tables and connecting to it.. not a big deal i just didnt really want to do it haha thanks again Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/#findComment-688225 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.