thewooleymammoth Posted November 12, 2008 Share Posted November 12, 2008 Would it be a major securiity flaw to store usernames and passwords as files in a folder that would only be accessible to the server for executing commands? Quote Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/ Share on other sites More sharing options...
DarkWater Posted November 12, 2008 Share Posted November 12, 2008 Why would you do that when using a database is much easier? Quote Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/#findComment-688217 Share on other sites More sharing options...
premiso Posted November 12, 2008 Share Posted November 12, 2008 Potentially it could. If on a shared server an exploit could gain access to that folder. I would go with DarkWater and store them in a database, much more secure and easier to manipulate/retrieve. To answer the question, yes it would be a security flaw, just due to the nature of a server. Quote Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/#findComment-688218 Share on other sites More sharing options...
thewooleymammoth Posted November 12, 2008 Author Share Posted November 12, 2008 k thanks i guess ill go with the mysql info, and just to answer your question, i just dont like using mysql because of the different syntax i have to remember and creating the tables and connecting to it.. not a big deal i just didnt really want to do it haha thanks again Quote Link to comment https://forums.phpfreaks.com/topic/132363-solved-files-instead-of-mysql-security-problem/#findComment-688225 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.